Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2025-6965 (GCVE-0-2025-6965)
Vulnerability from cvelistv5
Published
2025-07-15 13:44
Modified
2025-11-03 18:14
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- CWE-197 - Numeric Truncation Error
Summary
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.
References
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2025-6965",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2025-07-15T13:55:28.325825Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2025-07-15T13:55:46.280Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2025-11-03T18:14:03.536Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"url": "http://seclists.org/fulldisclosure/2025/Sep/57"
},
{
"url": "http://seclists.org/fulldisclosure/2025/Sep/56"
},
{
"url": "http://seclists.org/fulldisclosure/2025/Sep/53"
},
{
"url": "http://seclists.org/fulldisclosure/2025/Sep/58"
},
{
"url": "http://seclists.org/fulldisclosure/2025/Sep/49"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://www.sqlite.org/src",
"defaultStatus": "unaffected",
"packageName": "expr.c",
"product": "SQLite",
"programFiles": [
"expr.c"
],
"vendor": "SQLite",
"versions": [
{
"lessThan": "3.50.2",
"status": "affected",
"version": "0",
"versionType": "semver"
}
]
}
],
"credits": [
{
"lang": "en",
"type": "finder",
"value": "Vlad Stolyarov of Google\u0027s Threat Analysis Group, with assistance from Google Big Sleep"
}
],
"datePublic": "2025-06-27T22:00:00.000Z",
"descriptions": [
{
"lang": "en",
"supportingMedia": [
{
"base64": false,
"type": "text/html",
"value": "There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above."
}
],
"value": "There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above."
}
],
"impacts": [
{
"capecId": "CAPEC-679",
"descriptions": [
{
"lang": "en",
"value": "CAPEC-679 Exploitation of Improperly Configured or Implemented Memory Protections"
}
]
}
],
"metrics": [
{
"cvssV4_0": {
"Automatable": "NO",
"Recovery": "USER",
"Safety": "NEGLIGIBLE",
"attackComplexity": "HIGH",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"privilegesRequired": "LOW",
"providerUrgency": "GREEN",
"subAvailabilityImpact": "LOW",
"subConfidentialityImpact": "LOW",
"subIntegrityImpact": "HIGH",
"userInteraction": "NONE",
"valueDensity": "DIFFUSE",
"vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/S:N/AU:N/R:U/V:D/RE:L/U:Green",
"version": "4.0",
"vulnAvailabilityImpact": "LOW",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "LOW"
},
"format": "CVSS",
"scenarios": [
{
"lang": "en",
"value": "GENERAL"
}
]
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-197",
"description": "CWE-197: Numeric Truncation Error",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2025-07-15T13:44:00.784Z",
"orgId": "14ed7db2-1595-443d-9d34-6215bf890778",
"shortName": "Google"
},
"references": [
{
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"source": {
"discovery": "UNKNOWN"
},
"title": "Integer Truncation on SQLite",
"x_generator": {
"engine": "Vulnogram 0.2.0"
}
}
},
"cveMetadata": {
"assignerOrgId": "14ed7db2-1595-443d-9d34-6215bf890778",
"assignerShortName": "Google",
"cveId": "CVE-2025-6965",
"datePublished": "2025-07-15T13:44:00.784Z",
"dateReserved": "2025-07-01T09:19:04.750Z",
"dateUpdated": "2025-11-03T18:14:03.536Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2025-6965\",\"sourceIdentifier\":\"cve-coordination@google.com\",\"published\":\"2025-07-15T14:15:31.080\",\"lastModified\":\"2025-11-03T19:16:15.483\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.\"},{\"lang\":\"es\",\"value\":\"Existe una vulnerabilidad en las versiones de SQLite anteriores a la 3.50.2 donde el n\u00famero de t\u00e9rminos agregados podr\u00eda exceder el n\u00famero de columnas disponibles. Esto podr\u00eda causar un problema de corrupci\u00f3n de memoria. Recomendamos actualizar a la versi\u00f3n 3.50.2 o superior.\"}],\"metrics\":{\"cvssMetricV40\":[{\"source\":\"cve-coordination@google.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"4.0\",\"vectorString\":\"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Green\",\"baseScore\":7.2,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"attackRequirements\":\"PRESENT\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"vulnConfidentialityImpact\":\"LOW\",\"vulnIntegrityImpact\":\"HIGH\",\"vulnAvailabilityImpact\":\"LOW\",\"subConfidentialityImpact\":\"LOW\",\"subIntegrityImpact\":\"HIGH\",\"subAvailabilityImpact\":\"LOW\",\"exploitMaturity\":\"NOT_DEFINED\",\"confidentialityRequirement\":\"NOT_DEFINED\",\"integrityRequirement\":\"NOT_DEFINED\",\"availabilityRequirement\":\"NOT_DEFINED\",\"modifiedAttackVector\":\"NOT_DEFINED\",\"modifiedAttackComplexity\":\"NOT_DEFINED\",\"modifiedAttackRequirements\":\"NOT_DEFINED\",\"modifiedPrivilegesRequired\":\"NOT_DEFINED\",\"modifiedUserInteraction\":\"NOT_DEFINED\",\"modifiedVulnConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedVulnIntegrityImpact\":\"NOT_DEFINED\",\"modifiedVulnAvailabilityImpact\":\"NOT_DEFINED\",\"modifiedSubConfidentialityImpact\":\"NOT_DEFINED\",\"modifiedSubIntegrityImpact\":\"NOT_DEFINED\",\"modifiedSubAvailabilityImpact\":\"NOT_DEFINED\",\"Safety\":\"NEGLIGIBLE\",\"Automatable\":\"NO\",\"Recovery\":\"USER\",\"valueDensity\":\"DIFFUSE\",\"vulnerabilityResponseEffort\":\"LOW\",\"providerUrgency\":\"GREEN\"}}],\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"cve-coordination@google.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-197\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sqlite:sqlite:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"3.50.2\",\"matchCriteriaId\":\"C1739DFA-8AEF-4CDE-9CB8-A1B601EA6FDB\"}]}]}],\"references\":[{\"url\":\"https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8\",\"source\":\"cve-coordination@google.com\",\"tags\":[\"Patch\"]},{\"url\":\"http://seclists.org/fulldisclosure/2025/Sep/49\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2025/Sep/53\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2025/Sep/56\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2025/Sep/57\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://seclists.org/fulldisclosure/2025/Sep/58\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2025-6965\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-07-15T13:55:28.325825Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-07-15T13:55:30.882Z\"}}], \"cna\": {\"title\": \"Integer Truncation on SQLite\", \"source\": {\"discovery\": \"UNKNOWN\"}, \"credits\": [{\"lang\": \"en\", \"type\": \"finder\", \"value\": \"Vlad Stolyarov of Google\u0027s Threat Analysis Group, with assistance from Google Big Sleep\"}], \"impacts\": [{\"capecId\": \"CAPEC-679\", \"descriptions\": [{\"lang\": \"en\", \"value\": \"CAPEC-679 Exploitation of Improperly Configured or Implemented Memory Protections\"}]}], \"metrics\": [{\"format\": \"CVSS\", \"cvssV4_0\": {\"Safety\": \"NEGLIGIBLE\", \"version\": \"4.0\", \"Recovery\": \"USER\", \"baseScore\": 7.2, \"Automatable\": \"NO\", \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"valueDensity\": \"DIFFUSE\", \"vectorString\": \"CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/S:N/AU:N/R:U/V:D/RE:L/U:Green\", \"providerUrgency\": \"GREEN\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"attackRequirements\": \"PRESENT\", \"privilegesRequired\": \"LOW\", \"subIntegrityImpact\": \"HIGH\", \"vulnIntegrityImpact\": \"HIGH\", \"subAvailabilityImpact\": \"LOW\", \"vulnAvailabilityImpact\": \"LOW\", \"subConfidentialityImpact\": \"LOW\", \"vulnConfidentialityImpact\": \"LOW\", \"vulnerabilityResponseEffort\": \"LOW\"}, \"scenarios\": [{\"lang\": \"en\", \"value\": \"GENERAL\"}]}], \"affected\": [{\"vendor\": \"SQLite\", \"product\": \"SQLite\", \"versions\": [{\"status\": \"affected\", \"version\": \"0\", \"lessThan\": \"3.50.2\", \"versionType\": \"semver\"}], \"packageName\": \"expr.c\", \"programFiles\": [\"expr.c\"], \"collectionURL\": \"https://www.sqlite.org/src\", \"defaultStatus\": \"unaffected\"}], \"datePublic\": \"2025-06-27T22:00:00.000Z\", \"references\": [{\"url\": \"https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8\"}], \"x_generator\": {\"engine\": \"Vulnogram 0.2.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.\", \"supportingMedia\": [{\"type\": \"text/html\", \"value\": \"There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.\", \"base64\": false}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-197\", \"description\": \"CWE-197: Numeric Truncation Error\"}]}], \"providerMetadata\": {\"orgId\": \"14ed7db2-1595-443d-9d34-6215bf890778\", \"shortName\": \"Google\", \"dateUpdated\": \"2025-07-15T13:44:00.784Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2025-6965\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2025-07-15T13:55:46.280Z\", \"dateReserved\": \"2025-07-01T09:19:04.750Z\", \"assignerOrgId\": \"14ed7db2-1595-443d-9d34-6215bf890778\", \"datePublished\": \"2025-07-15T13:44:00.784Z\", \"assignerShortName\": \"Google\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
ncsc-2025-0290
Vulnerability from csaf_ncscnl
Published
2025-09-16 11:16
Modified
2025-09-16 11:16
Summary
Kwetsbaarheden verholpen in Apple macOS
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Apple heeft kwetsbaarheden verholpen in macOS.
Interpretaties
De kwetsbaarheden omvatten verschillende problemen met betrekking tot de toegang tot gevoelige gebruikersdata, permissies, en beveiligingslekken die konden leiden tot ongeautoriseerde toegang of het omzeilen van sandbox-beperkingen. Deze kwetsbaarheden konden door kwaadwillenden worden misbruikt om gevoelige informatie te verkrijgen of om de stabiliteit van het systeem in gevaar te brengen. De updates zijn cruciaal voor het waarborgen van de integriteit en privacy van gebruikersdata.
Oplossingen
Apple heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans
medium
Schade
high
CWE-20
Improper Input Validation
CWE-61
UNIX Symbolic Link (Symlink) Following
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CWE-125
Out-of-bounds Read
CWE-126
Buffer Over-read
CWE-197
Numeric Truncation Error
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
CWE-265
CWE-265
CWE-275
CWE-275
CWE-362
Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-404
Improper Resource Shutdown or Release
CWE-416
Use After Free
CWE-426
Untrusted Search Path
CWE-689
Permission Race Condition During Resource Copy
CWE-757
Selection of Less-Secure Algorithm During Negotiation ('Algorithm Downgrade')
CWE-693
Protection Mechanism Failure
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Apple heeft kwetsbaarheden verholpen in macOS.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden omvatten verschillende problemen met betrekking tot de toegang tot gevoelige gebruikersdata, permissies, en beveiligingslekken die konden leiden tot ongeautoriseerde toegang of het omzeilen van sandbox-beperkingen. Deze kwetsbaarheden konden door kwaadwillenden worden misbruikt om gevoelige informatie te verkrijgen of om de stabiliteit van het systeem in gevaar te brengen. De updates zijn cruciaal voor het waarborgen van de integriteit en privacy van gebruikersdata.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Apple heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "UNIX Symbolic Link (Symlink) Following",
"title": "CWE-61"
},
{
"category": "general",
"text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
"title": "CWE-119"
},
{
"category": "general",
"text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
"title": "CWE-120"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Buffer Over-read",
"title": "CWE-126"
},
{
"category": "general",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "general",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "general",
"text": "CWE-265",
"title": "CWE-265"
},
{
"category": "general",
"text": "CWE-275",
"title": "CWE-275"
},
{
"category": "general",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
},
{
"category": "general",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "general",
"text": "Untrusted Search Path",
"title": "CWE-426"
},
{
"category": "general",
"text": "Permission Race Condition During Resource Copy",
"title": "CWE-689"
},
{
"category": "general",
"text": "Selection of Less-Secure Algorithm During Negotiation (\u0027Algorithm Downgrade\u0027)",
"title": "CWE-757"
},
{
"category": "general",
"text": "Protection Mechanism Failure",
"title": "CWE-693"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference",
"url": "https://support.apple.com/en-us/125110"
},
{
"category": "external",
"summary": "Reference",
"url": "https://support.apple.com/en-us/125111"
},
{
"category": "external",
"summary": "Reference",
"url": "https://support.apple.com/en-us/125112"
}
],
"title": "Kwetsbaarheden verholpen in Apple macOS",
"tracking": {
"current_release_date": "2025-09-16T11:16:20.572265Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2025-0290",
"initial_release_date": "2025-09-16T11:16:20.572265Z",
"revision_history": [
{
"date": "2025-09-16T11:16:20.572265Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "macOS Sequoia"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-2"
}
}
],
"category": "product_name",
"name": "macOS Sonoma"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-3"
}
}
],
"category": "product_name",
"name": "macOS Tahoe"
}
],
"category": "vendor",
"name": "Apple"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-27280",
"cwe": {
"id": "CWE-120",
"name": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)"
},
"notes": [
{
"category": "other",
"text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
"title": "CWE-120"
},
{
"category": "other",
"text": "Buffer Over-read",
"title": "CWE-126"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-27280 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-27280.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
}
],
"title": "CVE-2024-27280"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"notes": [
{
"category": "other",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Green",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-6965 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-6965.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
}
],
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-24088",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-24088 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-24088.json"
}
],
"title": "CVE-2025-24088"
},
{
"cve": "CVE-2025-24197",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-24197 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-24197.json"
}
],
"title": "CVE-2025-24197"
},
{
"cve": "CVE-2025-31255",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-31255 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-31255.json"
}
],
"title": "CVE-2025-31255"
},
{
"cve": "CVE-2025-31259",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-31259 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-31259.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
}
],
"title": "CVE-2025-31259"
},
{
"cve": "CVE-2025-31268",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-31268 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-31268.json"
}
],
"title": "CVE-2025-31268"
},
{
"cve": "CVE-2025-31269",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-31269 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-31269.json"
}
],
"title": "CVE-2025-31269"
},
{
"cve": "CVE-2025-31270",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-31270 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-31270.json"
}
],
"title": "CVE-2025-31270"
},
{
"cve": "CVE-2025-31271",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-31271 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-31271.json"
}
],
"title": "CVE-2025-31271"
},
{
"cve": "CVE-2025-40909",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"notes": [
{
"category": "other",
"text": "Untrusted Search Path",
"title": "CWE-426"
},
{
"category": "other",
"text": "Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027)",
"title": "CWE-362"
},
{
"category": "other",
"text": "Permission Race Condition During Resource Copy",
"title": "CWE-689"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-40909 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-40909.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
}
],
"title": "CVE-2025-40909"
},
{
"cve": "CVE-2025-43190",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43190 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43190.json"
}
],
"title": "CVE-2025-43190"
},
{
"cve": "CVE-2025-43204",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43204 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43204.json"
}
],
"title": "CVE-2025-43204"
},
{
"cve": "CVE-2025-43207",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43207 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43207.json"
}
],
"title": "CVE-2025-43207"
},
{
"cve": "CVE-2025-43208",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43208 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43208.json"
}
],
"title": "CVE-2025-43208"
},
{
"cve": "CVE-2025-43231",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43231 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43231.json"
}
],
"title": "CVE-2025-43231"
},
{
"cve": "CVE-2025-43262",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43262 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43262.json"
}
],
"title": "CVE-2025-43262"
},
{
"cve": "CVE-2025-43272",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43272 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43272.json"
}
],
"title": "CVE-2025-43272"
},
{
"cve": "CVE-2025-43273",
"cwe": {
"id": "CWE-693",
"name": "Protection Mechanism Failure"
},
"notes": [
{
"category": "other",
"text": "Protection Mechanism Failure",
"title": "CWE-693"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43273 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43273.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
}
],
"title": "CVE-2025-43273"
},
{
"cve": "CVE-2025-43277",
"cwe": {
"id": "CWE-119",
"name": "Improper Restriction of Operations within the Bounds of a Memory Buffer"
},
"notes": [
{
"category": "other",
"text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
"title": "CWE-119"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43277 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43277.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
}
],
"title": "CVE-2025-43277"
},
{
"cve": "CVE-2025-43279",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43279 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43279.json"
}
],
"title": "CVE-2025-43279"
},
{
"cve": "CVE-2025-43283",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43283 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43283.json"
}
],
"title": "CVE-2025-43283"
},
{
"cve": "CVE-2025-43285",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43285 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43285.json"
}
],
"title": "CVE-2025-43285"
},
{
"cve": "CVE-2025-43286",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43286 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43286.json"
}
],
"title": "CVE-2025-43286"
},
{
"cve": "CVE-2025-43287",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43287 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43287.json"
}
],
"title": "CVE-2025-43287"
},
{
"cve": "CVE-2025-43291",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43291 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43291.json"
}
],
"title": "CVE-2025-43291"
},
{
"cve": "CVE-2025-43292",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43292 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43292.json"
}
],
"title": "CVE-2025-43292"
},
{
"cve": "CVE-2025-43293",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43293 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43293.json"
}
],
"title": "CVE-2025-43293"
},
{
"cve": "CVE-2025-43294",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43294 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43294.json"
}
],
"title": "CVE-2025-43294"
},
{
"cve": "CVE-2025-43295",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43295 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43295.json"
}
],
"title": "CVE-2025-43295"
},
{
"cve": "CVE-2025-43297",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43297 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43297.json"
}
],
"title": "CVE-2025-43297"
},
{
"cve": "CVE-2025-43298",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43298 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43298.json"
}
],
"title": "CVE-2025-43298"
},
{
"cve": "CVE-2025-43299",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43299 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43299.json"
}
],
"title": "CVE-2025-43299"
},
{
"cve": "CVE-2025-43301",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43301 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43301.json"
}
],
"title": "CVE-2025-43301"
},
{
"cve": "CVE-2025-43302",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43302 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43302.json"
}
],
"title": "CVE-2025-43302"
},
{
"cve": "CVE-2025-43303",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43303 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43303.json"
}
],
"title": "CVE-2025-43303"
},
{
"cve": "CVE-2025-43304",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43304 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43304.json"
}
],
"title": "CVE-2025-43304"
},
{
"cve": "CVE-2025-43305",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43305 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43305.json"
}
],
"title": "CVE-2025-43305"
},
{
"cve": "CVE-2025-43307",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43307 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43307.json"
}
],
"title": "CVE-2025-43307"
},
{
"cve": "CVE-2025-43308",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43308 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43308.json"
}
],
"title": "CVE-2025-43308"
},
{
"cve": "CVE-2025-43310",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43310 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43310.json"
}
],
"title": "CVE-2025-43310"
},
{
"cve": "CVE-2025-43311",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43311 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43311.json"
}
],
"title": "CVE-2025-43311"
},
{
"cve": "CVE-2025-43312",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43312 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43312.json"
}
],
"title": "CVE-2025-43312"
},
{
"cve": "CVE-2025-43314",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43314 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43314.json"
}
],
"title": "CVE-2025-43314"
},
{
"cve": "CVE-2025-43315",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43315 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43315.json"
}
],
"title": "CVE-2025-43315"
},
{
"cve": "CVE-2025-43316",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43316 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43316.json"
}
],
"title": "CVE-2025-43316"
},
{
"cve": "CVE-2025-43317",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43317 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43317.json"
}
],
"title": "CVE-2025-43317"
},
{
"cve": "CVE-2025-43318",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43318 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43318.json"
}
],
"title": "CVE-2025-43318"
},
{
"cve": "CVE-2025-43319",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43319 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43319.json"
}
],
"title": "CVE-2025-43319"
},
{
"cve": "CVE-2025-43321",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43321 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43321.json"
}
],
"title": "CVE-2025-43321"
},
{
"cve": "CVE-2025-43325",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43325 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43325.json"
}
],
"title": "CVE-2025-43325"
},
{
"cve": "CVE-2025-43326",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43326 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43326.json"
}
],
"title": "CVE-2025-43326"
},
{
"cve": "CVE-2025-43327",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43327 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43327.json"
}
],
"title": "CVE-2025-43327"
},
{
"cve": "CVE-2025-43328",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43328 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43328.json"
}
],
"title": "CVE-2025-43328"
},
{
"cve": "CVE-2025-43329",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43329 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43329.json"
}
],
"title": "CVE-2025-43329"
},
{
"cve": "CVE-2025-43330",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43330 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43330.json"
}
],
"title": "CVE-2025-43330"
},
{
"cve": "CVE-2025-43331",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43331 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43331.json"
}
],
"title": "CVE-2025-43331"
},
{
"cve": "CVE-2025-43332",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43332 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43332.json"
}
],
"title": "CVE-2025-43332"
},
{
"cve": "CVE-2025-43333",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43333 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43333.json"
}
],
"title": "CVE-2025-43333"
},
{
"cve": "CVE-2025-43337",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43337 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43337.json"
}
],
"title": "CVE-2025-43337"
},
{
"cve": "CVE-2025-43340",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43340 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43340.json"
}
],
"title": "CVE-2025-43340"
},
{
"cve": "CVE-2025-43341",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43341 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43341.json"
}
],
"title": "CVE-2025-43341"
},
{
"cve": "CVE-2025-43342",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43342 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43342.json"
}
],
"title": "CVE-2025-43342"
},
{
"cve": "CVE-2025-43343",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43343 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43343.json"
}
],
"title": "CVE-2025-43343"
},
{
"cve": "CVE-2025-43344",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43344 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43344.json"
}
],
"title": "CVE-2025-43344"
},
{
"cve": "CVE-2025-43346",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43346 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43346.json"
}
],
"title": "CVE-2025-43346"
},
{
"cve": "CVE-2025-43347",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43347 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43347.json"
}
],
"title": "CVE-2025-43347"
},
{
"cve": "CVE-2025-43349",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43349 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43349.json"
}
],
"title": "CVE-2025-43349"
},
{
"cve": "CVE-2025-43353",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43353 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43353.json"
}
],
"title": "CVE-2025-43353"
},
{
"cve": "CVE-2025-43354",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43354 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43354.json"
}
],
"title": "CVE-2025-43354"
},
{
"cve": "CVE-2025-43355",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43355 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43355.json"
}
],
"title": "CVE-2025-43355"
},
{
"cve": "CVE-2025-43356",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43356 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43356.json"
}
],
"title": "CVE-2025-43356"
},
{
"cve": "CVE-2025-43357",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43357 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43357.json"
}
],
"title": "CVE-2025-43357"
},
{
"cve": "CVE-2025-43358",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43358 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43358.json"
}
],
"title": "CVE-2025-43358"
},
{
"cve": "CVE-2025-43359",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43359 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43359.json"
}
],
"title": "CVE-2025-43359"
},
{
"cve": "CVE-2025-43366",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43366 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43366.json"
}
],
"title": "CVE-2025-43366"
},
{
"cve": "CVE-2025-43367",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43367 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43367.json"
}
],
"title": "CVE-2025-43367"
},
{
"cve": "CVE-2025-43368",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43368 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43368.json"
}
],
"title": "CVE-2025-43368"
},
{
"cve": "CVE-2025-43369",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43369 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43369.json"
}
],
"title": "CVE-2025-43369"
},
{
"cve": "CVE-2025-43372",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43372 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43372.json"
}
],
"title": "CVE-2025-43372"
}
]
}
ncsc-2025-0339
Vulnerability from csaf_ncscnl
Published
2025-10-23 14:11
Modified
2025-10-23 14:11
Summary
Kwetsbaarheden verholpen in Oracle MySQL
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Oracle heeft kwetsbaarheden verholpen in Oracle MySQL (Specifiek voor versies 8.0.0-8.0.43, 8.4.0-8.4.6, en 9.0.0-9.4.0).
Interpretaties
De kwetsbaarheden in Oracle MySQL stellen hooggeprivilegieerde aanvallers in staat om Denial-of-Service aanvallen uit te voeren en data te manipuleren zonder autorisatie. Dit kan leiden tot ernstige verstoringen in de service en compromittering van de integriteit van de data die door de getroffen systemen worden beheerd.
Oplossingen
Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans
medium
Schade
high
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CWE-125
Out-of-bounds Read
CWE-197
Numeric Truncation Error
CWE-400
Uncontrolled Resource Consumption
CWE-404
Improper Resource Shutdown or Release
CWE-407
Inefficient Algorithmic Complexity
CWE-670
Always-Incorrect Control Flow Implementation
CWE-770
Allocation of Resources Without Limits or Throttling
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
CWE-843
Access of Resource Using Incompatible Type ('Type Confusion')
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Oracle heeft kwetsbaarheden verholpen in Oracle MySQL (Specifiek voor versies 8.0.0-8.0.43, 8.4.0-8.4.6, en 9.0.0-9.4.0).",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden in Oracle MySQL stellen hooggeprivilegieerde aanvallers in staat om Denial-of-Service aanvallen uit te voeren en data te manipuleren zonder autorisatie. Dit kan leiden tot ernstige verstoringen in de service en compromittering van de integriteit van de data die door de getroffen systemen worden beheerd.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "general",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "Inefficient Algorithmic Complexity",
"title": "CWE-407"
},
{
"category": "general",
"text": "Always-Incorrect Control Flow Implementation",
"title": "CWE-670"
},
{
"category": "general",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "general",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "general",
"text": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
"title": "CWE-843"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference",
"url": "https://www.oracle.com/security-alerts/cpuoct2025.html"
}
],
"title": "Kwetsbaarheden verholpen in Oracle MySQL",
"tracking": {
"current_release_date": "2025-10-23T14:11:30.111892Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2025-0339",
"initial_release_date": "2025-10-23T14:11:30.111892Z",
"revision_history": [
{
"date": "2025-10-23T14:11:30.111892Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "MySQL"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-2"
}
}
],
"category": "product_name",
"name": "MySQL Cluster"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-3"
}
}
],
"category": "product_name",
"name": "MySQL Enterprise Backup"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-4"
}
}
],
"category": "product_name",
"name": "MySQL Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-5"
}
}
],
"category": "product_name",
"name": "MySQL Workbench"
}
],
"category": "vendor",
"name": "Oracle"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-12133",
"cwe": {
"id": "CWE-407",
"name": "Inefficient Algorithmic Complexity"
},
"notes": [
{
"category": "other",
"text": "Inefficient Algorithmic Complexity",
"title": "CWE-407"
},
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "description",
"text": "Multiple vulnerabilities affecting Oracle Communications EAGLE LNP Application Processor, Oracle Communications Cloud Native Core Policy, and libtasn1 could lead to denial of service attacks, with CVSS scores of 5.3 for some products.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-12133 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-12133.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2024-12133"
},
{
"cve": "CVE-2024-35195",
"cwe": {
"id": "CWE-670",
"name": "Always-Incorrect Control Flow Implementation"
},
"notes": [
{
"category": "other",
"text": "Always-Incorrect Control Flow Implementation",
"title": "CWE-670"
},
{
"category": "description",
"text": "Multiple vulnerabilities across various Oracle products, IBM InfoSphere, and Requests library versions allow high-privileged and remote attackers to compromise systems, execute arbitrary code, and bypass security measures, with CVSS scores ranging from 5.6 to 5.7.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-35195 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-35195.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.7,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2024-35195"
},
{
"cve": "CVE-2025-4517",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "description",
"text": "Recent updates to Python versions 3.6 through 3.13.5 address multiple security vulnerabilities, particularly in the tarfile module, while enhancing various functionalities and resolving issues related to memory management and IPv6 handling.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-4517 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-4517.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.4,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-4517"
},
{
"cve": "CVE-2025-5318",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle MySQL Workbench and the libssh library expose sensitive data and allow unauthorized access, with CVSS scores indicating moderate severity.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5318 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5318.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-5318"
},
{
"cve": "CVE-2025-5399",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "other",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "description",
"text": "Multiple vulnerabilities in Oracle MySQL Server and Cluster, along with libcurl\u0027s WebSocket code, allow for various denial of service attacks, with CVSS scores ranging from 4.3 to 7.5.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5399 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5399.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-5399"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"notes": [
{
"category": "other",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "description",
"text": "Critical vulnerabilities in Oracle Communications Cloud Native Core and SQLite versions prior to 3.50.2 expose systems to severe risks, including memory corruption and integer truncation issues.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Green",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-6965 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-6965.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Recent updates for libxml2 address multiple vulnerabilities, including heap use after free and type confusion, which could lead to denial of service or crashes, alongside an Oracle vulnerability allowing unauthorized data access.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-49796 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-49796.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-49796"
},
{
"cve": "CVE-2025-53040",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "A vulnerability in Oracle MySQL Server versions 8.0.0-8.0.43, 8.4.0-8.4.6, and 9.0.0-9.4.0 allows high-privileged attackers to cause denial of service via network access, with a CVSS score of 4.9.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53040 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53040.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-53040"
},
{
"cve": "CVE-2025-53042",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "A vulnerability in Oracle MySQL Server versions 8.0.0-8.0.43, 8.4.0-8.4.6, and 9.0.0-9.4.0 allows high-privileged attackers to cause denial of service via network access, with a CVSS score of 4.9.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53042 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53042.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-53042"
},
{
"cve": "CVE-2025-53044",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "A vulnerability in Oracle MySQL\u0027s InnoDB component affects specific versions, allowing high-privileged attackers to crash the MySQL Server, with a CVSS score of 4.9 indicating availability impacts.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53044 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53044.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-53044"
},
{
"cve": "CVE-2025-53045",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "A vulnerability in Oracle MySQL\u0027s InnoDB component affects specific versions, allowing high-privileged attackers to crash the MySQL Server, with a CVSS score of 4.9 indicating availability impacts.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53045 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53045.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-53045"
},
{
"cve": "CVE-2025-53053",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "A vulnerability in Oracle MySQL Server versions 8.0.0-8.0.43, 8.4.0-8.4.6, and 9.0.0-9.4.0 allows high-privileged attackers to execute denial of service and unauthorized data manipulation.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53053 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53053.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-53053"
},
{
"cve": "CVE-2025-53054",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "A vulnerability in Oracle MySQL\u0027s InnoDB component affects specific versions, enabling high-privileged attackers to execute denial of service and unauthorized data manipulation.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53054 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53054.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-53054"
},
{
"cve": "CVE-2025-53062",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "A vulnerability in Oracle MySQL\u0027s InnoDB component affects specific versions, allowing high-privileged attackers to crash the MySQL Server, with a CVSS score of 4.9 indicating availability impacts.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53062 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53062.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-53062"
},
{
"cve": "CVE-2025-53067",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "A vulnerability in Oracle MySQL Server (versions 9.0.0-9.4.0) allows high-privileged attackers to cause denial of service via network access, with a CVSS 3.1 Base Score of 4.9 indicating availability impacts.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53067 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53067.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-53067"
},
{
"cve": "CVE-2025-53069",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "A vulnerability in Oracle MySQL Server versions 8.0.0-8.0.43, 8.4.0-8.4.6, and 9.0.0-9.4.0 allows high-privileged attackers to cause denial of service via network access, with a CVSS score of 4.9.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53069 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53069.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5"
]
}
],
"title": "CVE-2025-53069"
}
]
}
ncsc-2025-0333
Vulnerability from csaf_ncscnl
Published
2025-10-23 13:35
Modified
2025-10-23 13:35
Summary
Kwetsbaarheden verholpen in Oracle Financial Services
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Oracle heeft kwetsbaarheden verholpen in Oracle Financial Services componenten.
Interpretaties
De kwetsbaarheden stellen ongeauthenticeerde aanvallers in staat om ongeautoriseerde toegang te krijgen tot gevoelige gegevens via HTTP. Dit kan leiden tot ongeoorloofde toegang en wijzigingen van kritieke data, met een CVSS-score van 9.8 die de significante impact op de vertrouwelijkheid benadrukt. Daarnaast zijn er kwetsbaarheden die kunnen leiden tot denial-of-service (DoS) aanvallen, wat de beschikbaarheid van het systeem in gevaar kan brengen.
Oplossingen
Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans
medium
Schade
high
CWE-20
Improper Input Validation
CWE-23
Relative Path Traversal
CWE-125
Out-of-bounds Read
CWE-197
Numeric Truncation Error
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
CWE-284
Improper Access Control
CWE-285
Improper Authorization
CWE-306
Missing Authentication for Critical Function
CWE-400
Uncontrolled Resource Consumption
CWE-404
Improper Resource Shutdown or Release
CWE-611
Improper Restriction of XML External Entity Reference
CWE-674
Uncontrolled Recursion
CWE-770
Allocation of Resources Without Limits or Throttling
CWE-862
Missing Authorization
CWE-863
Incorrect Authorization
CWE-918
Server-Side Request Forgery (SSRF)
CWE-937
CWE-937
CWE-1035
CWE-1035
CWE-1284
Improper Validation of Specified Quantity in Input
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Oracle heeft kwetsbaarheden verholpen in Oracle Financial Services componenten.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden stellen ongeauthenticeerde aanvallers in staat om ongeautoriseerde toegang te krijgen tot gevoelige gegevens via HTTP. Dit kan leiden tot ongeoorloofde toegang en wijzigingen van kritieke data, met een CVSS-score van 9.8 die de significante impact op de vertrouwelijkheid benadrukt. Daarnaast zijn er kwetsbaarheden die kunnen leiden tot denial-of-service (DoS) aanvallen, wat de beschikbaarheid van het systeem in gevaar kan brengen.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Oracle heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "Relative Path Traversal",
"title": "CWE-23"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "general",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "general",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "general",
"text": "Improper Authorization",
"title": "CWE-285"
},
{
"category": "general",
"text": "Missing Authentication for Critical Function",
"title": "CWE-306"
},
{
"category": "general",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "Improper Restriction of XML External Entity Reference",
"title": "CWE-611"
},
{
"category": "general",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "general",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "general",
"text": "Missing Authorization",
"title": "CWE-862"
},
{
"category": "general",
"text": "Incorrect Authorization",
"title": "CWE-863"
},
{
"category": "general",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "general",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "general",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "general",
"text": "Improper Validation of Specified Quantity in Input",
"title": "CWE-1284"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference",
"url": "https://www.oracle.com/security-alerts/cpuoct2025.html"
}
],
"title": "Kwetsbaarheden verholpen in Oracle Financial Services",
"tracking": {
"current_release_date": "2025-10-23T13:35:32.902231Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2025-0333",
"initial_release_date": "2025-10-23T13:35:32.902231Z",
"revision_history": [
{
"date": "2025-10-23T13:35:32.902231Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "Financial Services Revenue Management And Billing"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-2"
}
}
],
"category": "product_name",
"name": "Oracle Banking Branch"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-3"
}
}
],
"category": "product_name",
"name": "Oracle Banking Corporate Lending Process Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-4"
}
}
],
"category": "product_name",
"name": "Oracle Banking Origination"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-5"
}
}
],
"category": "product_name",
"name": "Oracle Financial Services Analytical Applications Infrastructure"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-6"
}
}
],
"category": "product_name",
"name": "Oracle Financial Services Behavior Detection Platform"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-7"
}
}
],
"category": "product_name",
"name": "Oracle Financial Services Compliance Studio"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-8"
}
}
],
"category": "product_name",
"name": "Oracle Financial Services Model Management and Governance"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-9"
}
}
],
"category": "product_name",
"name": "Oracle Financial Services Trade-Based Anti Money Laundering Enterprise Edition"
}
],
"category": "vendor",
"name": "Oracle"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-11988",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"notes": [
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "description",
"text": "Multiple vulnerabilities in Oracle Financial Services applications and Apache XmlGraphics Commons allow unauthorized access to critical data and server-side request forgery, all with a CVSS score of 8.2.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2020-11988 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2020/cve-2020-11988.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2020-11988"
},
{
"cve": "CVE-2024-28168",
"cwe": {
"id": "CWE-611",
"name": "Improper Restriction of XML External Entity Reference"
},
"notes": [
{
"category": "other",
"text": "Improper Restriction of XML External Entity Reference",
"title": "CWE-611"
},
{
"category": "description",
"text": "Recent updates address multiple security vulnerabilities across various products, including XML External Entity (XXE) issues in Apache XML Graphics FOP and Oracle applications, allowing unauthorized access to sensitive data.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28168 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-28168.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2024-28168"
},
{
"cve": "CVE-2025-5115",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "The \u0027MadeYouReset\u0027 vulnerability in HTTP/2 affects certain Jetty versions, allowing denial of service through malformed control frames, while additional vulnerabilities exist in Oracle Communications and SAP Commerce Cloud.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5115 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5115.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-5115"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"notes": [
{
"category": "other",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "description",
"text": "Critical vulnerabilities in Oracle Communications Cloud Native Core and SQLite versions prior to 3.50.2 expose systems to severe risks, including memory corruption and integer truncation issues.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Green",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-6965 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-6965.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-27553",
"cwe": {
"id": "CWE-23",
"name": "Relative Path Traversal"
},
"notes": [
{
"category": "other",
"text": "Relative Path Traversal",
"title": "CWE-23"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Middleware and Apache Commons VFS expose critical data and allow unauthorized file access, with significant risks associated with their exploitation.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27553 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27553.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-27553"
},
{
"cve": "CVE-2025-27817",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"notes": [
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Apache Kafka and Oracle applications allow unauthorized access to sensitive data, with notable SSRF risks and CVSS scores of 7.5 for Oracle products.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27817 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27817.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-27817"
},
{
"cve": "CVE-2025-31672",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "description",
"text": "Multiple vulnerabilities have been identified across various products, including Apache POI, Oracle BPM Suite, JD Edwards EnterpriseOne, and SAP BusinessObjects, affecting data integrity and allowing unauthorized access or manipulation.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-31672 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-31672.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-31672"
},
{
"cve": "CVE-2025-32415",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"notes": [
{
"category": "other",
"text": "Improper Validation of Specified Quantity in Input",
"title": "CWE-1284"
},
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Multiple vulnerabilities have been identified in Oracle Java SE and libxml2, allowing for potential system compromise and denial of service, with CVSS scores of 7.5 for several issues.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-32415 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-32415.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-32415"
},
{
"cve": "CVE-2025-41249",
"cwe": {
"id": "CWE-285",
"name": "Improper Authorization"
},
"notes": [
{
"category": "other",
"text": "Improper Authorization",
"title": "CWE-285"
},
{
"category": "other",
"text": "Incorrect Authorization",
"title": "CWE-863"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Financial Services and the Spring Framework expose critical data and authorization flaws, affecting multiple versions and products with significant security implications.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-41249 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-41249.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-41249"
},
{
"cve": "CVE-2025-48924",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle WebLogic Server and Apache Commons Lang versions expose systems to denial of service risks, including an uncontrolled recursion flaw leading to StackOverflowErrors.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48924 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48924.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-48924"
},
{
"cve": "CVE-2025-48976",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "Multiple vulnerabilities affecting Oracle Application Testing Suite and Apache Commons FileUpload, including DoS risks due to insufficient multipart header limits, have been identified, with CVSS scores reaching 7.5.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48976 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48976.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-48976"
},
{
"cve": "CVE-2025-48989",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "Recent updates for Apache Tomcat versions 9, 10, and 11 address the \u0027MadeYouReset\u0027 DoS vulnerability in HTTP/2, along with various enhancements to components like Catalina and Coyote.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48989 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48989.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-48989"
},
{
"cve": "CVE-2025-50074",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "description",
"text": "A vulnerability in Oracle Financial Services Revenue Management and Billing (versions 2.9.0.0.0-7.2.0.0.0) allows high-privileged attackers to gain unauthorized access to critical data via HTTP, with a CVSS 3.1 Base Score of 4.9.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-50074 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-50074.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-50074"
},
{
"cve": "CVE-2025-50075",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "other",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "description",
"text": "A vulnerability in Oracle Financial Services Revenue Management and Billing (versions 2.9.0.0.0-7.2.0.0.0) allows low privileged attackers with HTTP access to potentially gain unauthorized access to critical data, with a CVSS score of 6.5.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-50075 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-50075.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-50075"
},
{
"cve": "CVE-2025-53034",
"cwe": {
"id": "CWE-306",
"name": "Missing Authentication for Critical Function"
},
"notes": [
{
"category": "other",
"text": "Missing Authentication for Critical Function",
"title": "CWE-306"
},
{
"category": "description",
"text": "A vulnerability in Oracle Financial Services Analytical Applications Infrastructure versions 8.0.7.9, 8.0.8.7, and 8.1.2.5 allows unauthenticated attackers to compromise the system with human interaction, leading to unauthorized data access and modifications.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53034 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53034.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-53034"
},
{
"cve": "CVE-2025-53035",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "other",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "description",
"text": "A vulnerability in Oracle Financial Services Analytical Applications Infrastructure allows low privileged attackers to access critical data, affecting versions 8.0.7.9, 8.0.8.7, and 8.1.2.5, with a CVSS score of 6.5.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53035 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53035.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-53035"
},
{
"cve": "CVE-2025-53036",
"cwe": {
"id": "CWE-200",
"name": "Exposure of Sensitive Information to an Unauthorized Actor"
},
"notes": [
{
"category": "other",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "description",
"text": "A vulnerability in Oracle Financial Services Analytical Applications Infrastructure versions 8.0.7.9, 8.0.8.7, and 8.1.2.5 allows unauthenticated attackers to access critical data via HTTP, with a CVSS score of 8.6.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53036 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53036.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-53036"
},
{
"cve": "CVE-2025-53037",
"cwe": {
"id": "CWE-306",
"name": "Missing Authentication for Critical Function"
},
"notes": [
{
"category": "other",
"text": "Missing Authentication for Critical Function",
"title": "CWE-306"
},
{
"category": "description",
"text": "A critical vulnerability in Oracle Financial Services Analytical Applications Infrastructure (versions 8.0.7.9, 8.0.8.7, and 8.1.2.5) allows unauthenticated attackers to compromise the system via HTTP, with a CVSS score of 9.8.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53037 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53037.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-53037"
},
{
"cve": "CVE-2025-55163",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Recent updates to Netty address critical vulnerabilities, including the \u0027MadeYouReset\u0027 DDoS attack in HTTP/2, which can lead to denial of service through resource exhaustion in various affected versions.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-55163 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55163.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-55163"
},
{
"cve": "CVE-2025-59375",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "A memory amplification vulnerability in libexpat (CVE-2025-59375) allows excessive memory allocations from crafted XML input, affecting versions prior to 2.7.2, while a Security-in-Depth issue exists in Oracle Database Server\u0027s Perl component but is not exploitable.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-59375 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59375.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-59375"
},
{
"cve": "CVE-2025-61751",
"cwe": {
"id": "CWE-862",
"name": "Missing Authorization"
},
"notes": [
{
"category": "other",
"text": "Missing Authorization",
"title": "CWE-862"
},
{
"category": "description",
"text": "A vulnerability in Oracle Financial Services Analytical Applications Infrastructure versions 8.0.7.9, 8.0.8.7, and 8.1.2.5 allows low-privileged attackers to exploit it via HTTP, posing significant risks to data confidentiality and integrity.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-61751 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-61751.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-61751"
},
{
"cve": "CVE-2025-61756",
"cwe": {
"id": "CWE-306",
"name": "Missing Authentication for Critical Function"
},
"notes": [
{
"category": "other",
"text": "Missing Authentication for Critical Function",
"title": "CWE-306"
},
{
"category": "description",
"text": "A vulnerability in Oracle Financial Services Analytical Applications Infrastructure allows unauthenticated attackers to execute denial of service attacks on specific versions, rated with a CVSS score of 7.5.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-61756 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-61756.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9"
]
}
],
"title": "CVE-2025-61756"
}
]
}
ncsc-2025-0330
Vulnerability from csaf_ncscnl
Published
2025-10-23 13:20
Modified
2025-10-23 13:20
Summary
Kwetsbaarheden verholpen in Oracle Communications producten
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Oracle heeft meerdere kwetsbaarheden verholpen in zijn Communications producten, waaronder de Unified Assurance en Cloud Native Core.
Interpretaties
De kwetsbaarheden in de Oracle Communications producten stellen kwaadwillenden in staat om ongeautoriseerde toegang te verkrijgen, wat kan leiden tot gedeeltelijke of volledige Denial-of-Service (DoS) aanvallen. Specifiek kunnen aanvallers met netwerktoegang de systemen compromitteren, wat resulteert in ongeautoriseerde toegang tot gevoelige gegevens. De CVSS-scores van deze kwetsbaarheden variëren van 3.1 tot 9.8, wat wijst op een breed scala aan risico's, van beperkte tot ernstige impact op de vertrouwelijkheid, integriteit en beschikbaarheid van de systemen.
Oplossingen
Oracle heeft updates uitgebracht om de kwetsbaarheden in zijn Communications producten te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans
medium
Schade
high
CWE-20
Improper Input Validation
CWE-22
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CWE-23
Relative Path Traversal
CWE-94
Improper Control of Generation of Code ('Code Injection')
CWE-120
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')
CWE-121
Stack-based Buffer Overflow
CWE-122
Heap-based Buffer Overflow
CWE-124
Buffer Underwrite ('Buffer Underflow')
CWE-125
Out-of-bounds Read
CWE-129
Improper Validation of Array Index
CWE-130
Improper Handling of Length Parameter Inconsistency
CWE-147
Improper Neutralization of Input Terminators
CWE-190
Integer Overflow or Wraparound
CWE-197
Numeric Truncation Error
CWE-241
Improper Handling of Unexpected Data Type
CWE-252
Unchecked Return Value
CWE-253
Incorrect Check of Function Return Value
CWE-284
Improper Access Control
CWE-287
Improper Authentication
CWE-290
Authentication Bypass by Spoofing
CWE-328
Use of Weak Hash
CWE-385
Covert Timing Channel
CWE-390
Detection of Error Condition Without Action
CWE-400
Uncontrolled Resource Consumption
CWE-404
Improper Resource Shutdown or Release
CWE-407
Inefficient Algorithmic Complexity
CWE-409
Improper Handling of Highly Compressed Data (Data Amplification)
CWE-415
Double Free
CWE-416
Use After Free
CWE-426
Untrusted Search Path
CWE-440
Expected Behavior Violation
CWE-444
Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')
CWE-476
NULL Pointer Dereference
CWE-674
Uncontrolled Recursion
CWE-697
Incorrect Comparison
CWE-770
Allocation of Resources Without Limits or Throttling
CWE-787
Out-of-bounds Write
CWE-789
Memory Allocation with Excessive Size Value
CWE-835
Loop with Unreachable Exit Condition ('Infinite Loop')
CWE-843
Access of Resource Using Incompatible Type ('Type Confusion')
CWE-918
Server-Side Request Forgery (SSRF)
CWE-937
CWE-937
CWE-1035
CWE-1035
CWE-1284
Improper Validation of Specified Quantity in Input
CWE-1333
Inefficient Regular Expression Complexity
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Oracle heeft meerdere kwetsbaarheden verholpen in zijn Communications producten, waaronder de Unified Assurance en Cloud Native Core.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden in de Oracle Communications producten stellen kwaadwillenden in staat om ongeautoriseerde toegang te verkrijgen, wat kan leiden tot gedeeltelijke of volledige Denial-of-Service (DoS) aanvallen. Specifiek kunnen aanvallers met netwerktoegang de systemen compromitteren, wat resulteert in ongeautoriseerde toegang tot gevoelige gegevens. De CVSS-scores van deze kwetsbaarheden vari\u00ebren van 3.1 tot 9.8, wat wijst op een breed scala aan risico\u0027s, van beperkte tot ernstige impact op de vertrouwelijkheid, integriteit en beschikbaarheid van de systemen.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Oracle heeft updates uitgebracht om de kwetsbaarheden in zijn Communications producten te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "high",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "general",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "general",
"text": "Relative Path Traversal",
"title": "CWE-23"
},
{
"category": "general",
"text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"title": "CWE-94"
},
{
"category": "general",
"text": "Buffer Copy without Checking Size of Input (\u0027Classic Buffer Overflow\u0027)",
"title": "CWE-120"
},
{
"category": "general",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "general",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "general",
"text": "Buffer Underwrite (\u0027Buffer Underflow\u0027)",
"title": "CWE-124"
},
{
"category": "general",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "general",
"text": "Improper Validation of Array Index",
"title": "CWE-129"
},
{
"category": "general",
"text": "Improper Handling of Length Parameter Inconsistency",
"title": "CWE-130"
},
{
"category": "general",
"text": "Improper Neutralization of Input Terminators",
"title": "CWE-147"
},
{
"category": "general",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "general",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "general",
"text": "Improper Handling of Unexpected Data Type",
"title": "CWE-241"
},
{
"category": "general",
"text": "Unchecked Return Value",
"title": "CWE-252"
},
{
"category": "general",
"text": "Incorrect Check of Function Return Value",
"title": "CWE-253"
},
{
"category": "general",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "general",
"text": "Improper Authentication",
"title": "CWE-287"
},
{
"category": "general",
"text": "Authentication Bypass by Spoofing",
"title": "CWE-290"
},
{
"category": "general",
"text": "Use of Weak Hash",
"title": "CWE-328"
},
{
"category": "general",
"text": "Covert Timing Channel",
"title": "CWE-385"
},
{
"category": "general",
"text": "Detection of Error Condition Without Action",
"title": "CWE-390"
},
{
"category": "general",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "general",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "general",
"text": "Inefficient Algorithmic Complexity",
"title": "CWE-407"
},
{
"category": "general",
"text": "Improper Handling of Highly Compressed Data (Data Amplification)",
"title": "CWE-409"
},
{
"category": "general",
"text": "Double Free",
"title": "CWE-415"
},
{
"category": "general",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "general",
"text": "Untrusted Search Path",
"title": "CWE-426"
},
{
"category": "general",
"text": "Expected Behavior Violation",
"title": "CWE-440"
},
{
"category": "general",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "general",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "general",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "general",
"text": "Incorrect Comparison",
"title": "CWE-697"
},
{
"category": "general",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "general",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "general",
"text": "Memory Allocation with Excessive Size Value",
"title": "CWE-789"
},
{
"category": "general",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "general",
"text": "Access of Resource Using Incompatible Type (\u0027Type Confusion\u0027)",
"title": "CWE-843"
},
{
"category": "general",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "general",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "general",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "general",
"text": "Improper Validation of Specified Quantity in Input",
"title": "CWE-1284"
},
{
"category": "general",
"text": "Inefficient Regular Expression Complexity",
"title": "CWE-1333"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference",
"url": "https://www.oracle.com/security-alerts/cpuoct2025.html"
}
],
"title": "Kwetsbaarheden verholpen in Oracle Communications producten",
"tracking": {
"current_release_date": "2025-10-23T13:20:15.363063Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2025-0330",
"initial_release_date": "2025-10-23T13:20:15.363063Z",
"revision_history": [
{
"date": "2025-10-23T13:20:15.363063Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "Communications Cloud Native Core Console"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-2"
}
}
],
"category": "product_name",
"name": "Management Cloud Engine"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-3"
}
}
],
"category": "product_name",
"name": "Oracle Communications Billing and Revenue Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-4"
}
}
],
"category": "product_name",
"name": "Oracle Communications Calendar Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-5"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Automated Test Suite"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-6"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Binding Support Function"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-7"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Certificate Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-8"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core DBTier"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-9"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Network Function Cloud Native Environment"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-10"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Network Repository Function"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-11"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Network Slice Selection Function"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-12"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Policy"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-13"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Security Edge Protection Proxy"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-14"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Service Communication Proxy"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-15"
}
}
],
"category": "product_name",
"name": "Oracle Communications Cloud Native Core Unified Data Repository"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-16"
}
}
],
"category": "product_name",
"name": "Oracle Communications Converged Charging System"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-17"
}
}
],
"category": "product_name",
"name": "Oracle Communications Convergence"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-18"
}
}
],
"category": "product_name",
"name": "Oracle Communications Convergent Charging Controller"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-19"
}
}
],
"category": "product_name",
"name": "Oracle Communications Diameter Signaling Router"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-20"
}
}
],
"category": "product_name",
"name": "Oracle Communications EAGLE Element Management System"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-21"
}
}
],
"category": "product_name",
"name": "Oracle Communications EAGLE LNP Application Processor"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-22"
}
}
],
"category": "product_name",
"name": "Oracle Communications LSMS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-23"
}
}
],
"category": "product_name",
"name": "Oracle Communications Messaging Server"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-24"
}
}
],
"category": "product_name",
"name": "Oracle Communications Network Analytics Data Director"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-25"
}
}
],
"category": "product_name",
"name": "Oracle Communications Network Charging and Control"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-26"
}
}
],
"category": "product_name",
"name": "Oracle Communications Network Integrity"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-27"
}
}
],
"category": "product_name",
"name": "Oracle Communications Offline Mediation Controller"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-28"
}
}
],
"category": "product_name",
"name": "Oracle Communications Operations Monitor"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-29"
}
}
],
"category": "product_name",
"name": "Oracle Communications Order and Service Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-30"
}
}
],
"category": "product_name",
"name": "Oracle Communications Pricing Design Center"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-31"
}
}
],
"category": "product_name",
"name": "Oracle Communications Service Catalog and Design"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-32"
}
}
],
"category": "product_name",
"name": "Oracle Communications Session Border Controller"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-33"
}
}
],
"category": "product_name",
"name": "Oracle Communications Unified Assurance"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-34"
}
}
],
"category": "product_name",
"name": "Oracle Communications Unified Inventory Management"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-35"
}
}
],
"category": "product_name",
"name": "Oracle Enterprise Communications Broker"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-36"
}
}
],
"category": "product_name",
"name": "Oracle Enterprise Operations Monitor"
}
],
"category": "vendor",
"name": "Oracle"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-26555",
"cwe": {
"id": "CWE-787",
"name": "Out-of-bounds Write"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "description",
"text": "Recent updates address vulnerabilities in NTP 4.2.8p17 and Oracle products, including CVE-2023-26555 related to malformed RT-11 dates and various security issues in Oracle Communications and Database systems.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2023-26555 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2023/cve-2023-26555.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:P/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2023-26555"
},
{
"cve": "CVE-2024-7254",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"notes": [
{
"category": "other",
"text": "Improper Input Validation",
"title": "CWE-20"
},
{
"category": "other",
"text": "Out-of-bounds Write",
"title": "CWE-787"
},
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "description",
"text": "Multiple vulnerabilities across various Oracle, IBM, and Protobuf products could lead to Denial of Service and unauthorized access, with significant risks identified in versions of Oracle Communications, MySQL Connector/J, and IBM WebSphere.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-7254 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-7254.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-7254"
},
{
"cve": "CVE-2024-8006",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "description",
"text": "Multiple vulnerabilities in Oracle Communications products and the libpcap library allow high-privileged attackers to cause denial of service and NULL pointer dereference issues, with CVSS scores of 4.4 for the former.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:H/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-8006 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-8006.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-8006"
},
{
"cve": "CVE-2024-12133",
"cwe": {
"id": "CWE-407",
"name": "Inefficient Algorithmic Complexity"
},
"notes": [
{
"category": "other",
"text": "Inefficient Algorithmic Complexity",
"title": "CWE-407"
},
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "description",
"text": "Multiple vulnerabilities affecting Oracle Communications EAGLE LNP Application Processor, Oracle Communications Cloud Native Core Policy, and libtasn1 could lead to denial of service attacks, with CVSS scores of 5.3 for some products.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-12133 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-12133.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-12133"
},
{
"cve": "CVE-2024-28182",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Detection of Error Condition Without Action",
"title": "CWE-390"
},
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Oracle MySQL, Oracle Communications, and nghttp2 products allow remote attackers to exploit confidentiality, integrity, and availability, with varying damage ratings from medium to high.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-28182 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-28182.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-28182"
},
{
"cve": "CVE-2024-35164",
"cwe": {
"id": "CWE-129",
"name": "Improper Validation of Array Index"
},
"notes": [
{
"category": "other",
"text": "Improper Validation of Array Index",
"title": "CWE-129"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Unified Assurance and Apache Guacamole could allow high-privileged attackers to compromise systems and execute arbitrary code, respectively.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-35164 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-35164.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-35164"
},
{
"cve": "CVE-2024-37371",
"cwe": {
"id": "CWE-130",
"name": "Improper Handling of Length Parameter Inconsistency"
},
"notes": [
{
"category": "other",
"text": "Improper Handling of Length Parameter Inconsistency",
"title": "CWE-130"
},
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Oracle products, including Communications and MySQL, as well as MIT Kerberos 5, allow for unauthorized access, denial of service, and other malicious activities, with CVSS scores reaching 9.1.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-37371 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-37371.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-37371"
},
{
"cve": "CVE-2024-47554",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Oracle Middleware, Documaker, and Apache Commons IO components allow unauthenticated attackers to exploit denial of service risks, with CVSS scores ranging from 4.3 to 7.5.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-47554 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-47554.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-47554"
},
{
"cve": "CVE-2024-50609",
"cwe": {
"id": "CWE-476",
"name": "NULL Pointer Dereference"
},
"notes": [
{
"category": "other",
"text": "NULL Pointer Dereference",
"title": "CWE-476"
},
{
"category": "description",
"text": "Fluent Bit 3.1.9 has a vulnerability allowing remote Denial of Service attacks via a zero-length packet, while Oracle Communications Unified Assurance versions 6.1.0-6.1.1 can be exploited by high-privileged attackers for complete Denial of Service.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-50609 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-50609.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-50609"
},
{
"cve": "CVE-2024-51504",
"cwe": {
"id": "CWE-290",
"name": "Authentication Bypass by Spoofing"
},
"notes": [
{
"category": "other",
"text": "Authentication Bypass by Spoofing",
"title": "CWE-290"
},
{
"category": "description",
"text": "Recent vulnerabilities in Apache ZooKeeper and Oracle Communications Unified Assurance expose systems to authentication bypass and unauthorized access, allowing attackers to execute commands and access critical data.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-51504 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-51504.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-51504"
},
{
"cve": "CVE-2024-57699",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "description",
"text": "Multiple security vulnerabilities across various Oracle products and the Netplex Json-smart library can lead to Denial of Service (DoS) due to stack exhaustion and other exploits, affecting versions 2.5.0 to 2.5.1 and specific Oracle software.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2024-57699 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2024/cve-2024-57699.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2024-57699"
},
{
"cve": "CVE-2025-1948",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "Eclipse Jetty versions 12.0.0 to 12.0.16 are vulnerable to OutOfMemoryError and denial of service attacks due to improper validation of the SETTINGS_MAX_HEADER_LIST_SIZE parameter, affecting various products including Oracle Communications EAGLE and NetApp.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-1948 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-1948.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-1948"
},
{
"cve": "CVE-2025-3576",
"cwe": {
"id": "CWE-328",
"name": "Use of Weak Hash"
},
"notes": [
{
"category": "other",
"text": "Use of Weak Hash",
"title": "CWE-328"
},
{
"category": "description",
"text": "Recent vulnerabilities in krb5 and MIT Kerberos implementations allow for message spoofing via MD5 checksum weaknesses, while Oracle Communications Network Analytics Data Director is susceptible to unauthorized data manipulation through SSH access.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-3576 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-3576.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-3576"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"notes": [
{
"category": "other",
"text": "Buffer Underwrite (\u0027Buffer Underflow\u0027)",
"title": "CWE-124"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Cloud Native Core and glib2 involve unauthorized access risks and buffer overflow issues, affecting multiple products with varying severity levels.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-4373 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-4373.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:L/E:U",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-4373"
},
{
"cve": "CVE-2025-4517",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "description",
"text": "Recent updates to Python versions 3.6 through 3.13.5 address multiple security vulnerabilities, particularly in the tarfile module, while enhancing various functionalities and resolving issues related to memory management and IPv6 handling.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-4517 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-4517.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.4,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-4517"
},
{
"cve": "CVE-2025-4802",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"notes": [
{
"category": "other",
"text": "Untrusted Search Path",
"title": "CWE-426"
},
{
"category": "description",
"text": "Vulnerabilities in Oracle Communications Cloud Native Core and glibc allow unauthenticated access and privilege escalation, with CVSS scores of 7.8, affecting confidentiality, integrity, and availability.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-4802 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-4802.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.4,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-4802"
},
{
"cve": "CVE-2025-5115",
"cwe": {
"id": "CWE-400",
"name": "Uncontrolled Resource Consumption"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "The \u0027MadeYouReset\u0027 vulnerability in HTTP/2 affects certain Jetty versions, allowing denial of service through malformed control frames, while additional vulnerabilities exist in Oracle Communications and SAP Commerce Cloud.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:N/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5115 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5115.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-5115"
},
{
"cve": "CVE-2025-5318",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle MySQL Workbench and the libssh library expose sensitive data and allow unauthorized access, with CVSS scores indicating moderate severity.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5318 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5318.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-5318"
},
{
"cve": "CVE-2025-5399",
"cwe": {
"id": "CWE-835",
"name": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)"
},
"notes": [
{
"category": "other",
"text": "Loop with Unreachable Exit Condition (\u0027Infinite Loop\u0027)",
"title": "CWE-835"
},
{
"category": "description",
"text": "Multiple vulnerabilities in Oracle MySQL Server and Cluster, along with libcurl\u0027s WebSocket code, allow for various denial of service attacks, with CVSS scores ranging from 4.3 to 7.5.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5399 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5399.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-5399"
},
{
"cve": "CVE-2025-5889",
"cwe": {
"id": "CWE-1333",
"name": "Inefficient Regular Expression Complexity"
},
"notes": [
{
"category": "other",
"text": "Inefficient Regular Expression Complexity",
"title": "CWE-1333"
},
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "The juliangruber brace-expansion library has a vulnerability in versions up to 4.0.0 affecting the expand function, while Oracle Communications Unified Assurance versions 6.1.0-6.1.1 are susceptible to a partial denial of service by low-privileged attackers.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:P",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-5889 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-5889.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.1,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:L/E:P/RL:O/RC:C",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-5889"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"notes": [
{
"category": "other",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "description",
"text": "Critical vulnerabilities in Oracle Communications Cloud Native Core and SQLite versions prior to 3.50.2 expose systems to severe risks, including memory corruption and integer truncation issues.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Green",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-6965 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-6965.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-7339",
"cwe": {
"id": "CWE-241",
"name": "Improper Handling of Unexpected Data Type"
},
"notes": [
{
"category": "other",
"text": "Improper Handling of Unexpected Data Type",
"title": "CWE-241"
},
{
"category": "description",
"text": "Oracle Communications Unified Assurance has a vulnerability allowing unauthorized data access, while the on-headers middleware for Node.js has a bug affecting response header modifications in versions prior to 1.1.0.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-7339 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-7339.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 3.4,
"baseSeverity": "LOW",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-7339"
},
{
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"notes": [
{
"category": "other",
"text": "Use After Free",
"title": "CWE-416"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Cloud Native Core and libxslt expose systems to unauthorized access and memory corruption, with significant impacts on integrity and availability.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-7425 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-7425.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-7425"
},
{
"cve": "CVE-2025-7962",
"cwe": {
"id": "CWE-147",
"name": "Improper Neutralization of Input Terminators"
},
"notes": [
{
"category": "other",
"text": "Improper Neutralization of Input Terminators",
"title": "CWE-147"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Cloud Native Core Console and Jakarta Mail versions 2.0.2 and 2.2 expose systems to significant risks, including unauthorized access and SMTP Injection attacks.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:L/UI:N/VC:N/VI:H/VA:N/SC:N/SI:L/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-7962 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-7962.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-7962"
},
{
"cve": "CVE-2025-8058",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"notes": [
{
"category": "other",
"text": "Double Free",
"title": "CWE-415"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Enterprise Operations Monitor and GNU C library versions 2.4 to 2.41 expose systems to potential unauthorized access, memory corruption, and denial of service risks.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:P/PR:L/UI:P/VC:L/VI:L/VA:H/SC:L/SI:L/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-8058 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-8058.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.0,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-8058"
},
{
"cve": "CVE-2025-8916",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Bouncy Castle for Java and BCPKIX FIPS have a vulnerability allowing excessive resource allocation, while Oracle Communications Cloud Native Core Certificate Management and certain NetApp products face denial of service risks.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/S:P/R:U/RE:M/U:Amber",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-8916 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-8916.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-8916"
},
{
"cve": "CVE-2025-9086",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "The curl update 8.14.1 addresses security vulnerabilities, including out-of-bounds reads, proxy cache poisoning, and a bug allowing insecure sites to override secure cookies, alongside a denial of service vulnerability in Oracle Communications Unified Inventory Management.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-9086 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-9086.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-9086"
},
{
"cve": "CVE-2025-25724",
"cwe": {
"id": "CWE-252",
"name": "Unchecked Return Value"
},
"notes": [
{
"category": "other",
"text": "Unchecked Return Value",
"title": "CWE-252"
},
{
"category": "description",
"text": "Multiple vulnerabilities have been identified in Oracle Communications Network Analytics Data Director and the libarchive component, affecting system integrity and availability, with CVSS scores indicating significant risks.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-25724 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-25724.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-25724"
},
{
"cve": "CVE-2025-27210",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)",
"title": "CWE-22"
},
{
"category": "description",
"text": "Node.js versions 20.x, 22.x, and 24.x have an incomplete fix for CVE-2025-23084 affecting Windows device names and the `path.join` API, while Oracle Communications\u0027 Cloud Native Environment has a non-exploitable Security-in-Depth issue.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27210 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27210.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-27210"
},
{
"cve": "CVE-2025-27533",
"cwe": {
"id": "CWE-789",
"name": "Memory Allocation with Excessive Size Value"
},
"notes": [
{
"category": "other",
"text": "Memory Allocation with Excessive Size Value",
"title": "CWE-789"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Apache ActiveMQ and Oracle products allow for denial of service attacks due to improper validation and excessive memory allocation, affecting various versions and configurations.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:H/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:H/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:Y/R:A/V:D/RE:M/U:Red",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27533 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27533.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-27533"
},
{
"cve": "CVE-2025-27553",
"cwe": {
"id": "CWE-23",
"name": "Relative Path Traversal"
},
"notes": [
{
"category": "other",
"text": "Relative Path Traversal",
"title": "CWE-23"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Middleware and Apache Commons VFS expose critical data and allow unauthorized file access, with significant risks associated with their exploitation.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27553 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27553.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-27553"
},
{
"cve": "CVE-2025-27587",
"cwe": {
"id": "CWE-385",
"name": "Covert Timing Channel"
},
"notes": [
{
"category": "other",
"text": "Covert Timing Channel",
"title": "CWE-385"
},
{
"category": "description",
"text": "OpenSSL versions 3.0.0 to 3.3.2 on PowerPC are vulnerable to a Minerva attack, while Oracle Communications Cloud Native Core Certificate Management 25.1.200 has a critical data access vulnerability, and OpenSSL 3 has addressed timing side channel issues.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:P/AC:H/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27587 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27587.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-27587"
},
{
"cve": "CVE-2025-27817",
"cwe": {
"id": "CWE-918",
"name": "Server-Side Request Forgery (SSRF)"
},
"notes": [
{
"category": "other",
"text": "Server-Side Request Forgery (SSRF)",
"title": "CWE-918"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Apache Kafka and Oracle applications allow unauthorized access to sensitive data, with notable SSRF risks and CVSS scores of 7.5 for Oracle products.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-27817 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-27817.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-27817"
},
{
"cve": "CVE-2025-32415",
"cwe": {
"id": "CWE-1284",
"name": "Improper Validation of Specified Quantity in Input"
},
"notes": [
{
"category": "other",
"text": "Improper Validation of Specified Quantity in Input",
"title": "CWE-1284"
},
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Multiple vulnerabilities have been identified in Oracle Java SE and libxml2, allowing for potential system compromise and denial of service, with CVSS scores of 7.5 for several issues.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:H/AT:N/PR:L/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-32415 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-32415.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-32415"
},
{
"cve": "CVE-2025-32728",
"cwe": {
"id": "CWE-440",
"name": "Expected Behavior Violation"
},
"notes": [
{
"category": "other",
"text": "Expected Behavior Violation",
"title": "CWE-440"
},
{
"category": "description",
"text": "Multiple vulnerabilities across Oracle Enterprise Communications Broker, OpenSSH, and HP-UX Secure Shell daemon could lead to unauthorized data access and system compromise, with varying CVSS scores and exploitation potential.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-32728 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-32728.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-32728"
},
{
"cve": "CVE-2025-32990",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Unified Inventory Management and GnuTLS\u0027s certtool expose systems to denial-of-service and unauthorized data access, with significant integrity impacts and a CVSS score of 8.2 for Oracle\u0027s flaw.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-32990 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-32990.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.2,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-32990"
},
{
"cve": "CVE-2025-48734",
"cwe": {
"id": "CWE-284",
"name": "Improper Access Control"
},
"notes": [
{
"category": "other",
"text": "Improper Access Control",
"title": "CWE-284"
},
{
"category": "description",
"text": "Recent updates to Apache Commons BeanUtils address multiple vulnerabilities, including arbitrary code execution risks and unauthorized access to Java enum properties, affecting versions prior to 1.11.0 and 2.0.0-M2.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48734 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48734.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-48734"
},
{
"cve": "CVE-2025-48924",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle WebLogic Server and Apache Commons Lang versions expose systems to denial of service risks, including an uncontrolled recursion flaw leading to StackOverflowErrors.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48924 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48924.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-48924"
},
{
"cve": "CVE-2025-48976",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "Multiple vulnerabilities affecting Oracle Application Testing Suite and Apache Commons FileUpload, including DoS risks due to insufficient multipart header limits, have been identified, with CVSS scores reaching 7.5.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48976 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48976.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-48976"
},
{
"cve": "CVE-2025-48989",
"cwe": {
"id": "CWE-404",
"name": "Improper Resource Shutdown or Release"
},
"notes": [
{
"category": "other",
"text": "Improper Resource Shutdown or Release",
"title": "CWE-404"
},
{
"category": "other",
"text": "Uncontrolled Resource Consumption",
"title": "CWE-400"
},
{
"category": "description",
"text": "Recent updates for Apache Tomcat versions 9, 10, and 11 address the \u0027MadeYouReset\u0027 DoS vulnerability in HTTP/2, along with various enhancements to components like Catalina and Coyote.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-48989 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-48989.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-48989"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"notes": [
{
"category": "other",
"text": "Out-of-bounds Read",
"title": "CWE-125"
},
{
"category": "description",
"text": "Recent updates for libxml2 address multiple vulnerabilities, including heap use after free and type confusion, which could lead to denial of service or crashes, alongside an Oracle vulnerability allowing unauthorized data access.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-49796 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-49796.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-49796"
},
{
"cve": "CVE-2025-52999",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Stack-based Buffer Overflow",
"title": "CWE-121"
},
{
"category": "description",
"text": "Oracle Communications Unified Assurance has a vulnerability allowing denial of service, while jackson-core versions prior to 2.15.0 can cause StackoverflowError with deeply nested data, now mitigated in version 2.15.0.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-52999 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-52999.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-52999"
},
{
"cve": "CVE-2025-53547",
"cwe": {
"id": "CWE-94",
"name": "Improper Control of Generation of Code (\u0027Code Injection\u0027)"
},
"notes": [
{
"category": "other",
"text": "Improper Control of Generation of Code (\u0027Code Injection\u0027)",
"title": "CWE-94"
},
{
"category": "description",
"text": "Helm v3.18.4 addresses a critical vulnerability allowing local code execution through crafted `Chart.yaml` and symlinked `Chart.lock` files during dependency updates, alongside an Oracle Communications flaw with a CVSS score of 8.6.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53547 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53547.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-53547"
},
{
"cve": "CVE-2025-53643",
"cwe": {
"id": "CWE-444",
"name": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)"
},
"notes": [
{
"category": "other",
"text": "Inconsistent Interpretation of HTTP Requests (\u0027HTTP Request/Response Smuggling\u0027)",
"title": "CWE-444"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Operations Monitor and aiohttp could allow unauthorized access and data manipulation, with significant integrity impacts and request smuggling risks in affected versions.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53643 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53643.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-53643"
},
{
"cve": "CVE-2025-53864",
"cwe": {
"id": "CWE-674",
"name": "Uncontrolled Recursion"
},
"notes": [
{
"category": "other",
"text": "Uncontrolled Recursion",
"title": "CWE-674"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle GoldenGate and Connect2id Nimbus JOSE + JWT expose systems to denial of service attacks, with CVSS scores indicating significant availability impacts due to issues with deeply nested JSON objects.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-53864 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-53864.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-53864"
},
{
"cve": "CVE-2025-54090",
"cwe": {
"id": "CWE-253",
"name": "Incorrect Check of Function Return Value"
},
"notes": [
{
"category": "other",
"text": "Incorrect Check of Function Return Value",
"title": "CWE-253"
},
{
"category": "description",
"text": "Recent vulnerabilities in Oracle Communications Cloud Native Core Automated Test Suite and Apache HTTP Server 2.4.64 expose systems to unauthorized data access and potential denial of service, with a CVSS score of 6.3 for the Oracle issue.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-54090 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-54090.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-54090"
},
{
"cve": "CVE-2025-55163",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Recent updates to Netty address critical vulnerabilities, including the \u0027MadeYouReset\u0027 DDoS attack in HTTP/2, which can lead to denial of service through resource exhaustion in various affected versions.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-55163 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-55163.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-55163"
},
{
"cve": "CVE-2025-57803",
"cwe": {
"id": "CWE-122",
"name": "Heap-based Buffer Overflow"
},
"notes": [
{
"category": "other",
"text": "Heap-based Buffer Overflow",
"title": "CWE-122"
},
{
"category": "other",
"text": "Integer Overflow or Wraparound",
"title": "CWE-190"
},
{
"category": "description",
"text": "ImageMagick has addressed critical vulnerabilities in its BMP encoder, including a 32-bit integer overflow leading to heap corruption and potential code execution, alongside other security enhancements.",
"title": "Summary"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-57803 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-57803.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-57803"
},
{
"cve": "CVE-2025-58057",
"cwe": {
"id": "CWE-409",
"name": "Improper Handling of Highly Compressed Data (Data Amplification)"
},
"notes": [
{
"category": "other",
"text": "Improper Handling of Highly Compressed Data (Data Amplification)",
"title": "CWE-409"
},
{
"category": "other",
"text": "CWE-1035",
"title": "CWE-1035"
},
{
"category": "other",
"text": "CWE-937",
"title": "CWE-937"
},
{
"category": "description",
"text": "Multiple vulnerabilities in decompressing decoders, including `BrotliDecoder`, and components of Oracle and HPE products can lead to denial of service through excessive buffer allocation and malformed HTTP/2 frames.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-58057 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-58057.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-58057"
},
{
"cve": "CVE-2025-59375",
"cwe": {
"id": "CWE-770",
"name": "Allocation of Resources Without Limits or Throttling"
},
"notes": [
{
"category": "other",
"text": "Allocation of Resources Without Limits or Throttling",
"title": "CWE-770"
},
{
"category": "description",
"text": "A memory amplification vulnerability in libexpat (CVE-2025-59375) allows excessive memory allocations from crafted XML input, affecting versions prior to 2.7.2, while a Security-in-Depth issue exists in Oracle Database Server\u0027s Perl component but is not exploitable.",
"title": "Summary"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-59375 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-59375.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2",
"CSAFPID-3",
"CSAFPID-4",
"CSAFPID-5",
"CSAFPID-6",
"CSAFPID-7",
"CSAFPID-8",
"CSAFPID-9",
"CSAFPID-10",
"CSAFPID-11",
"CSAFPID-12",
"CSAFPID-13",
"CSAFPID-14",
"CSAFPID-15",
"CSAFPID-16",
"CSAFPID-17",
"CSAFPID-18",
"CSAFPID-19",
"CSAFPID-20",
"CSAFPID-21",
"CSAFPID-22",
"CSAFPID-23",
"CSAFPID-24",
"CSAFPID-25",
"CSAFPID-26",
"CSAFPID-27",
"CSAFPID-28",
"CSAFPID-29",
"CSAFPID-30",
"CSAFPID-31",
"CSAFPID-32",
"CSAFPID-33",
"CSAFPID-34",
"CSAFPID-35",
"CSAFPID-36"
]
}
],
"title": "CVE-2025-59375"
}
]
}
ncsc-2025-0291
Vulnerability from csaf_ncscnl
Published
2025-09-16 11:17
Modified
2025-09-16 11:17
Summary
Kwetsbaarheden verholpen in Apple iOS en iPadOS
Notes
The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:
NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.
NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.
This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings.
Feiten
Apple heeft kwetsbaarheden verholpen in iOS en iPadOS.
Interpretaties
De kwetsbaarheden omvatten verschillende problemen zoals ongeautoriseerde toegang tot gevoelige gebruikersdata, geheugenbeheerproblemen, en kwetsbaarheden die konden leiden tot denial-of-service of onverwachte applicatiecrashes. Deze kwetsbaarheden konden worden misbruikt door kwaadwillenden om toegang te krijgen tot privé-informatie of om de stabiliteit van de systemen in gevaar te brengen. De verbeteringen in de updates zijn cruciaal voor het waarborgen van de privacy en veiligheid van gebruikers binnen het Apple-ecosysteem.
Oplossingen
Apple heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.
Kans
medium
Schade
medium
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer
CWE-197
Numeric Truncation Error
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
CWE-275
CWE-275
CWE-416
Use After Free
{
"document": {
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE"
}
},
"lang": "nl",
"notes": [
{
"category": "legal_disclaimer",
"text": "The Netherlands Cyber Security Center (henceforth: NCSC-NL) maintains this page to enhance access to its information and security advisories. The use of this security advisory is subject to the following terms and conditions:\n\n NCSC-NL makes every reasonable effort to ensure that the content of this page is kept up to date, and that it is accurate and complete. Nevertheless, NCSC-NL cannot entirely rule out the possibility of errors, and therefore cannot give any warranty in respect of its completeness, accuracy or continuous keeping up-to-date. The information contained in this security advisory is intended solely for the purpose of providing general information to professional users. No rights can be derived from the information provided therein.\n\n NCSC-NL and the Kingdom of the Netherlands assume no legal liability or responsibility for any damage resulting from either the use or inability of use of this security advisory. This includes damage resulting from the inaccuracy of incompleteness of the information contained in the advisory.\n This security advisory is subject to Dutch law. All disputes related to or arising from the use of this advisory will be submitted to the competent court in The Hague. This choice of means also applies to the court in summary proceedings."
},
{
"category": "description",
"text": "Apple heeft kwetsbaarheden verholpen in iOS en iPadOS.",
"title": "Feiten"
},
{
"category": "description",
"text": "De kwetsbaarheden omvatten verschillende problemen zoals ongeautoriseerde toegang tot gevoelige gebruikersdata, geheugenbeheerproblemen, en kwetsbaarheden die konden leiden tot denial-of-service of onverwachte applicatiecrashes. Deze kwetsbaarheden konden worden misbruikt door kwaadwillenden om toegang te krijgen tot priv\u00e9-informatie of om de stabiliteit van de systemen in gevaar te brengen. De verbeteringen in de updates zijn cruciaal voor het waarborgen van de privacy en veiligheid van gebruikers binnen het Apple-ecosysteem.",
"title": "Interpretaties"
},
{
"category": "description",
"text": "Apple heeft updates uitgebracht om de kwetsbaarheden te verhelpen. Zie bijgevoegde referenties voor meer informatie.",
"title": "Oplossingen"
},
{
"category": "general",
"text": "medium",
"title": "Kans"
},
{
"category": "general",
"text": "medium",
"title": "Schade"
},
{
"category": "general",
"text": "Improper Restriction of Operations within the Bounds of a Memory Buffer",
"title": "CWE-119"
},
{
"category": "general",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "general",
"text": "Exposure of Sensitive Information to an Unauthorized Actor",
"title": "CWE-200"
},
{
"category": "general",
"text": "CWE-275",
"title": "CWE-275"
},
{
"category": "general",
"text": "Use After Free",
"title": "CWE-416"
}
],
"publisher": {
"category": "coordinator",
"contact_details": "cert@ncsc.nl",
"name": "Nationaal Cyber Security Centrum",
"namespace": "https://www.ncsc.nl/"
},
"references": [
{
"category": "external",
"summary": "Reference",
"url": "https://support.apple.com/en-us/125108"
},
{
"category": "external",
"summary": "Reference",
"url": "https://support.apple.com/en-us/125109"
}
],
"title": "Kwetsbaarheden verholpen in Apple iOS en iPadOS",
"tracking": {
"current_release_date": "2025-09-16T11:17:27.365694Z",
"generator": {
"date": "2025-08-04T16:30:00Z",
"engine": {
"name": "V.A.",
"version": "1.3"
}
},
"id": "NCSC-2025-0291",
"initial_release_date": "2025-09-16T11:17:27.365694Z",
"revision_history": [
{
"date": "2025-09-16T11:17:27.365694Z",
"number": "1.0.0",
"summary": "Initiele versie"
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-1"
}
}
],
"category": "product_name",
"name": "iOS"
},
{
"branches": [
{
"category": "product_version_range",
"name": "vers:unknown/*",
"product": {
"name": "vers:unknown/*",
"product_id": "CSAFPID-2"
}
}
],
"category": "product_name",
"name": "iPadOS"
}
],
"category": "vendor",
"name": "Apple"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"notes": [
{
"category": "other",
"text": "Numeric Truncation Error",
"title": "CWE-197"
},
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Green",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-6965 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-6965.json"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"CSAFPID-1",
"CSAFPID-2"
]
}
],
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-24133",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-24133 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-24133.json"
}
],
"title": "CVE-2025-24133"
},
{
"cve": "CVE-2025-30468",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-30468 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-30468.json"
}
],
"title": "CVE-2025-30468"
},
{
"cve": "CVE-2025-31254",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-31254 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-31254.json"
}
],
"title": "CVE-2025-31254"
},
{
"cve": "CVE-2025-31255",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-31255 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-31255.json"
}
],
"title": "CVE-2025-31255"
},
{
"cve": "CVE-2025-43190",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43190 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43190.json"
}
],
"title": "CVE-2025-43190"
},
{
"cve": "CVE-2025-43203",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43203 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43203.json"
}
],
"title": "CVE-2025-43203"
},
{
"cve": "CVE-2025-43272",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43272 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43272.json"
}
],
"title": "CVE-2025-43272"
},
{
"cve": "CVE-2025-43295",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43295 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43295.json"
}
],
"title": "CVE-2025-43295"
},
{
"cve": "CVE-2025-43299",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43299 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43299.json"
}
],
"title": "CVE-2025-43299"
},
{
"cve": "CVE-2025-43302",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43302 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43302.json"
}
],
"title": "CVE-2025-43302"
},
{
"cve": "CVE-2025-43303",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43303 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43303.json"
}
],
"title": "CVE-2025-43303"
},
{
"cve": "CVE-2025-43317",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43317 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43317.json"
}
],
"title": "CVE-2025-43317"
},
{
"cve": "CVE-2025-43329",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43329 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43329.json"
}
],
"title": "CVE-2025-43329"
},
{
"cve": "CVE-2025-43342",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43342 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43342.json"
}
],
"title": "CVE-2025-43342"
},
{
"cve": "CVE-2025-43343",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43343 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43343.json"
}
],
"title": "CVE-2025-43343"
},
{
"cve": "CVE-2025-43344",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43344 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43344.json"
}
],
"title": "CVE-2025-43344"
},
{
"cve": "CVE-2025-43346",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43346 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43346.json"
}
],
"title": "CVE-2025-43346"
},
{
"cve": "CVE-2025-43347",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43347 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43347.json"
}
],
"title": "CVE-2025-43347"
},
{
"cve": "CVE-2025-43349",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43349 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43349.json"
}
],
"title": "CVE-2025-43349"
},
{
"cve": "CVE-2025-43354",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43354 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43354.json"
}
],
"title": "CVE-2025-43354"
},
{
"cve": "CVE-2025-43355",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43355 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43355.json"
}
],
"title": "CVE-2025-43355"
},
{
"cve": "CVE-2025-43356",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43356 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43356.json"
}
],
"title": "CVE-2025-43356"
},
{
"cve": "CVE-2025-43357",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43357 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43357.json"
}
],
"title": "CVE-2025-43357"
},
{
"cve": "CVE-2025-43358",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43358 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43358.json"
}
],
"title": "CVE-2025-43358"
},
{
"cve": "CVE-2025-43359",
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43359 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43359.json"
}
],
"title": "CVE-2025-43359"
},
{
"cve": "CVE-2025-43362",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43362 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43362.json"
}
],
"title": "CVE-2025-43362"
},
{
"cve": "CVE-2025-43368",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43368 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43368.json"
}
],
"title": "CVE-2025-43368"
},
{
"cve": "CVE-2025-43372",
"notes": [
{
"category": "general",
"text": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:P/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N",
"title": "CVSSV4"
}
],
"product_status": {
"known_affected": [
"CSAFPID-1",
"CSAFPID-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-43372 | NCSC-NL Website",
"url": "https://vulnerabilities.ncsc.nl/csaf/v2/2025/cve-2025-43372.json"
}
],
"title": "CVE-2025-43372"
}
]
}
opensuse-su-2025:15368-1
Vulnerability from csaf_opensuse
Published
2025-07-20 00:00
Modified
2025-07-20 00:00
Summary
lemon-3.50.3-1.1 on GA media
Notes
Title of the patch
lemon-3.50.3-1.1 on GA media
Description of the patch
These are all security issues fixed in the lemon-3.50.3-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2025-15368
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "lemon-3.50.3-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the lemon-3.50.3-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2025-15368",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2025_15368-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2025-6965 page",
"url": "https://www.suse.com/security/cve/CVE-2025-6965/"
}
],
"title": "lemon-3.50.3-1.1 on GA media",
"tracking": {
"current_release_date": "2025-07-20T00:00:00Z",
"generator": {
"date": "2025-07-20T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2025:15368-1",
"initial_release_date": "2025-07-20T00:00:00Z",
"revision_history": [
{
"date": "2025-07-20T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "lemon-3.50.3-1.1.aarch64",
"product": {
"name": "lemon-3.50.3-1.1.aarch64",
"product_id": "lemon-3.50.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libsqlite3-0-3.50.3-1.1.aarch64",
"product": {
"name": "libsqlite3-0-3.50.3-1.1.aarch64",
"product_id": "libsqlite3-0-3.50.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libsqlite3-0-32bit-3.50.3-1.1.aarch64",
"product": {
"name": "libsqlite3-0-32bit-3.50.3-1.1.aarch64",
"product_id": "libsqlite3-0-32bit-3.50.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libsqlite3-0-x86-64-v3-3.50.3-1.1.aarch64",
"product": {
"name": "libsqlite3-0-x86-64-v3-3.50.3-1.1.aarch64",
"product_id": "libsqlite3-0-x86-64-v3-3.50.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "sqlite3-3.50.3-1.1.aarch64",
"product": {
"name": "sqlite3-3.50.3-1.1.aarch64",
"product_id": "sqlite3-3.50.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "sqlite3-devel-3.50.3-1.1.aarch64",
"product": {
"name": "sqlite3-devel-3.50.3-1.1.aarch64",
"product_id": "sqlite3-devel-3.50.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "sqlite3-doc-3.50.3-1.1.aarch64",
"product": {
"name": "sqlite3-doc-3.50.3-1.1.aarch64",
"product_id": "sqlite3-doc-3.50.3-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "sqlite3-tcl-3.50.3-1.1.aarch64",
"product": {
"name": "sqlite3-tcl-3.50.3-1.1.aarch64",
"product_id": "sqlite3-tcl-3.50.3-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "lemon-3.50.3-1.1.ppc64le",
"product": {
"name": "lemon-3.50.3-1.1.ppc64le",
"product_id": "lemon-3.50.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libsqlite3-0-3.50.3-1.1.ppc64le",
"product": {
"name": "libsqlite3-0-3.50.3-1.1.ppc64le",
"product_id": "libsqlite3-0-3.50.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libsqlite3-0-32bit-3.50.3-1.1.ppc64le",
"product": {
"name": "libsqlite3-0-32bit-3.50.3-1.1.ppc64le",
"product_id": "libsqlite3-0-32bit-3.50.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libsqlite3-0-x86-64-v3-3.50.3-1.1.ppc64le",
"product": {
"name": "libsqlite3-0-x86-64-v3-3.50.3-1.1.ppc64le",
"product_id": "libsqlite3-0-x86-64-v3-3.50.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "sqlite3-3.50.3-1.1.ppc64le",
"product": {
"name": "sqlite3-3.50.3-1.1.ppc64le",
"product_id": "sqlite3-3.50.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "sqlite3-devel-3.50.3-1.1.ppc64le",
"product": {
"name": "sqlite3-devel-3.50.3-1.1.ppc64le",
"product_id": "sqlite3-devel-3.50.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "sqlite3-doc-3.50.3-1.1.ppc64le",
"product": {
"name": "sqlite3-doc-3.50.3-1.1.ppc64le",
"product_id": "sqlite3-doc-3.50.3-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "sqlite3-tcl-3.50.3-1.1.ppc64le",
"product": {
"name": "sqlite3-tcl-3.50.3-1.1.ppc64le",
"product_id": "sqlite3-tcl-3.50.3-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "lemon-3.50.3-1.1.s390x",
"product": {
"name": "lemon-3.50.3-1.1.s390x",
"product_id": "lemon-3.50.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libsqlite3-0-3.50.3-1.1.s390x",
"product": {
"name": "libsqlite3-0-3.50.3-1.1.s390x",
"product_id": "libsqlite3-0-3.50.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libsqlite3-0-32bit-3.50.3-1.1.s390x",
"product": {
"name": "libsqlite3-0-32bit-3.50.3-1.1.s390x",
"product_id": "libsqlite3-0-32bit-3.50.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libsqlite3-0-x86-64-v3-3.50.3-1.1.s390x",
"product": {
"name": "libsqlite3-0-x86-64-v3-3.50.3-1.1.s390x",
"product_id": "libsqlite3-0-x86-64-v3-3.50.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "sqlite3-3.50.3-1.1.s390x",
"product": {
"name": "sqlite3-3.50.3-1.1.s390x",
"product_id": "sqlite3-3.50.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "sqlite3-devel-3.50.3-1.1.s390x",
"product": {
"name": "sqlite3-devel-3.50.3-1.1.s390x",
"product_id": "sqlite3-devel-3.50.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "sqlite3-doc-3.50.3-1.1.s390x",
"product": {
"name": "sqlite3-doc-3.50.3-1.1.s390x",
"product_id": "sqlite3-doc-3.50.3-1.1.s390x"
}
},
{
"category": "product_version",
"name": "sqlite3-tcl-3.50.3-1.1.s390x",
"product": {
"name": "sqlite3-tcl-3.50.3-1.1.s390x",
"product_id": "sqlite3-tcl-3.50.3-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "lemon-3.50.3-1.1.x86_64",
"product": {
"name": "lemon-3.50.3-1.1.x86_64",
"product_id": "lemon-3.50.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libsqlite3-0-3.50.3-1.1.x86_64",
"product": {
"name": "libsqlite3-0-3.50.3-1.1.x86_64",
"product_id": "libsqlite3-0-3.50.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libsqlite3-0-32bit-3.50.3-1.1.x86_64",
"product": {
"name": "libsqlite3-0-32bit-3.50.3-1.1.x86_64",
"product_id": "libsqlite3-0-32bit-3.50.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libsqlite3-0-x86-64-v3-3.50.3-1.1.x86_64",
"product": {
"name": "libsqlite3-0-x86-64-v3-3.50.3-1.1.x86_64",
"product_id": "libsqlite3-0-x86-64-v3-3.50.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "sqlite3-3.50.3-1.1.x86_64",
"product": {
"name": "sqlite3-3.50.3-1.1.x86_64",
"product_id": "sqlite3-3.50.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "sqlite3-devel-3.50.3-1.1.x86_64",
"product": {
"name": "sqlite3-devel-3.50.3-1.1.x86_64",
"product_id": "sqlite3-devel-3.50.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "sqlite3-doc-3.50.3-1.1.x86_64",
"product": {
"name": "sqlite3-doc-3.50.3-1.1.x86_64",
"product_id": "sqlite3-doc-3.50.3-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "sqlite3-tcl-3.50.3-1.1.x86_64",
"product": {
"name": "sqlite3-tcl-3.50.3-1.1.x86_64",
"product_id": "sqlite3-tcl-3.50.3-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-3.50.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:lemon-3.50.3-1.1.aarch64"
},
"product_reference": "lemon-3.50.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-3.50.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:lemon-3.50.3-1.1.ppc64le"
},
"product_reference": "lemon-3.50.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-3.50.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:lemon-3.50.3-1.1.s390x"
},
"product_reference": "lemon-3.50.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-3.50.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:lemon-3.50.3-1.1.x86_64"
},
"product_reference": "lemon-3.50.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsqlite3-0-3.50.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.aarch64"
},
"product_reference": "libsqlite3-0-3.50.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsqlite3-0-3.50.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.ppc64le"
},
"product_reference": "libsqlite3-0-3.50.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsqlite3-0-3.50.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.s390x"
},
"product_reference": "libsqlite3-0-3.50.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsqlite3-0-3.50.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.x86_64"
},
"product_reference": "libsqlite3-0-3.50.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsqlite3-0-32bit-3.50.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.aarch64"
},
"product_reference": "libsqlite3-0-32bit-3.50.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsqlite3-0-32bit-3.50.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.ppc64le"
},
"product_reference": "libsqlite3-0-32bit-3.50.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsqlite3-0-32bit-3.50.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.s390x"
},
"product_reference": "libsqlite3-0-32bit-3.50.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsqlite3-0-32bit-3.50.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.x86_64"
},
"product_reference": "libsqlite3-0-32bit-3.50.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsqlite3-0-x86-64-v3-3.50.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.aarch64"
},
"product_reference": "libsqlite3-0-x86-64-v3-3.50.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsqlite3-0-x86-64-v3-3.50.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.ppc64le"
},
"product_reference": "libsqlite3-0-x86-64-v3-3.50.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsqlite3-0-x86-64-v3-3.50.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.s390x"
},
"product_reference": "libsqlite3-0-x86-64-v3-3.50.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsqlite3-0-x86-64-v3-3.50.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.x86_64"
},
"product_reference": "libsqlite3-0-x86-64-v3-3.50.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-3.50.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-3.50.3-1.1.aarch64"
},
"product_reference": "sqlite3-3.50.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-3.50.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-3.50.3-1.1.ppc64le"
},
"product_reference": "sqlite3-3.50.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-3.50.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-3.50.3-1.1.s390x"
},
"product_reference": "sqlite3-3.50.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-3.50.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-3.50.3-1.1.x86_64"
},
"product_reference": "sqlite3-3.50.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-devel-3.50.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.aarch64"
},
"product_reference": "sqlite3-devel-3.50.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-devel-3.50.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.ppc64le"
},
"product_reference": "sqlite3-devel-3.50.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-devel-3.50.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.s390x"
},
"product_reference": "sqlite3-devel-3.50.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-devel-3.50.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.x86_64"
},
"product_reference": "sqlite3-devel-3.50.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-doc-3.50.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.aarch64"
},
"product_reference": "sqlite3-doc-3.50.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-doc-3.50.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.ppc64le"
},
"product_reference": "sqlite3-doc-3.50.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-doc-3.50.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.s390x"
},
"product_reference": "sqlite3-doc-3.50.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-doc-3.50.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.x86_64"
},
"product_reference": "sqlite3-doc-3.50.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-tcl-3.50.3-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.aarch64"
},
"product_reference": "sqlite3-tcl-3.50.3-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-tcl-3.50.3-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.ppc64le"
},
"product_reference": "sqlite3-tcl-3.50.3-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-tcl-3.50.3-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.s390x"
},
"product_reference": "sqlite3-tcl-3.50.3-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite3-tcl-3.50.3-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.x86_64"
},
"product_reference": "sqlite3-tcl-3.50.3-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2025-6965"
}
],
"notes": [
{
"category": "general",
"text": "There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:lemon-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:lemon-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:lemon-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:lemon-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:sqlite3-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:sqlite3-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:sqlite3-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:sqlite3-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2025-6965",
"url": "https://www.suse.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "SUSE Bug 1246597 for CVE-2025-6965",
"url": "https://bugzilla.suse.com/1246597"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:lemon-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:lemon-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:lemon-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:lemon-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:sqlite3-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:sqlite3-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:sqlite3-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:sqlite3-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.7,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"openSUSE Tumbleweed:lemon-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:lemon-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:lemon-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:lemon-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:libsqlite3-0-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:libsqlite3-0-32bit-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:libsqlite3-0-x86-64-v3-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:sqlite3-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:sqlite3-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:sqlite3-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:sqlite3-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:sqlite3-devel-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:sqlite3-doc-3.50.3-1.1.x86_64",
"openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.aarch64",
"openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.ppc64le",
"openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.s390x",
"openSUSE Tumbleweed:sqlite3-tcl-3.50.3-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2025-07-20T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2025-6965"
}
]
}
fkie_cve-2025-6965
Vulnerability from fkie_nvd
Published
2025-07-15 14:15
Modified
2025-11-03 19:16
Severity ?
Summary
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.
References
| URL | Tags | ||
|---|---|---|---|
| cve-coordination@google.com | https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8 | Patch | |
| af854a3a-2127-422b-91ae-364da2661108 | http://seclists.org/fulldisclosure/2025/Sep/49 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://seclists.org/fulldisclosure/2025/Sep/53 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://seclists.org/fulldisclosure/2025/Sep/56 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://seclists.org/fulldisclosure/2025/Sep/57 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://seclists.org/fulldisclosure/2025/Sep/58 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:sqlite:sqlite:*:*:*:*:*:*:*:*",
"matchCriteriaId": "C1739DFA-8AEF-4CDE-9CB8-A1B601EA6FDB",
"versionEndExcluding": "3.50.2",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above."
},
{
"lang": "es",
"value": "Existe una vulnerabilidad en las versiones de SQLite anteriores a la 3.50.2 donde el n\u00famero de t\u00e9rminos agregados podr\u00eda exceder el n\u00famero de columnas disponibles. Esto podr\u00eda causar un problema de corrupci\u00f3n de memoria. Recomendamos actualizar a la versi\u00f3n 3.50.2 o superior."
}
],
"id": "CVE-2025-6965",
"lastModified": "2025-11-03T19:16:15.483",
"metrics": {
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
],
"cvssMetricV40": [
{
"cvssData": {
"Automatable": "NO",
"Recovery": "USER",
"Safety": "NEGLIGIBLE",
"attackComplexity": "HIGH",
"attackRequirements": "PRESENT",
"attackVector": "NETWORK",
"availabilityRequirement": "NOT_DEFINED",
"baseScore": 7.2,
"baseSeverity": "HIGH",
"confidentialityRequirement": "NOT_DEFINED",
"exploitMaturity": "NOT_DEFINED",
"integrityRequirement": "NOT_DEFINED",
"modifiedAttackComplexity": "NOT_DEFINED",
"modifiedAttackRequirements": "NOT_DEFINED",
"modifiedAttackVector": "NOT_DEFINED",
"modifiedPrivilegesRequired": "NOT_DEFINED",
"modifiedSubAvailabilityImpact": "NOT_DEFINED",
"modifiedSubConfidentialityImpact": "NOT_DEFINED",
"modifiedSubIntegrityImpact": "NOT_DEFINED",
"modifiedUserInteraction": "NOT_DEFINED",
"modifiedVulnAvailabilityImpact": "NOT_DEFINED",
"modifiedVulnConfidentialityImpact": "NOT_DEFINED",
"modifiedVulnIntegrityImpact": "NOT_DEFINED",
"privilegesRequired": "LOW",
"providerUrgency": "GREEN",
"subAvailabilityImpact": "LOW",
"subConfidentialityImpact": "LOW",
"subIntegrityImpact": "HIGH",
"userInteraction": "NONE",
"valueDensity": "DIFFUSE",
"vectorString": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Green",
"version": "4.0",
"vulnAvailabilityImpact": "LOW",
"vulnConfidentialityImpact": "LOW",
"vulnIntegrityImpact": "HIGH",
"vulnerabilityResponseEffort": "LOW"
},
"source": "cve-coordination@google.com",
"type": "Secondary"
}
]
},
"published": "2025-07-15T14:15:31.080",
"references": [
{
"source": "cve-coordination@google.com",
"tags": [
"Patch"
],
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://seclists.org/fulldisclosure/2025/Sep/49"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://seclists.org/fulldisclosure/2025/Sep/53"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://seclists.org/fulldisclosure/2025/Sep/56"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://seclists.org/fulldisclosure/2025/Sep/57"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://seclists.org/fulldisclosure/2025/Sep/58"
}
],
"sourceIdentifier": "cve-coordination@google.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-197"
}
],
"source": "cve-coordination@google.com",
"type": "Secondary"
}
]
}
wid-sec-w-2025-1905
Vulnerability from csaf_certbund
Published
2025-08-25 22:00
Modified
2025-08-27 22:00
Summary
IBM QRadar SIEM Komponente: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
IBM QRadar Security Information and Event Management (SIEM) bietet Unterstützung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.
Angriff
Ein Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM Komponenten ausnutzen, um Daten zu manipulieren, um einen Denial of Service Angriff durchzuführen, um beliebigen Programmcode auszuführen, um Sicherheitsvorkehrungen zu umgehen, und um Informationen offenzulegen.
Betroffene Betriebssysteme
- Linux
- UNIX
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "IBM QRadar Security Information and Event Management (SIEM) bietet Unterst\u00fctzung bei der Erkennung und Priorisierung von Sicherheitsbedrohungen im Unternehmen.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in IBM QRadar SIEM Komponenten ausnutzen, um Daten zu manipulieren, um einen Denial of Service Angriff durchzuf\u00fchren, um beliebigen Programmcode auszuf\u00fchren, um Sicherheitsvorkehrungen zu umgehen, und um Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux\n- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-1905 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1905.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-1905 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1905"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7243011 vom 2025-08-25",
"url": "https://www.ibm.com/support/pages/node/7243011"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14746 vom 2025-08-27",
"url": "https://access.redhat.com/errata/RHSA-2025:14746"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14748 vom 2025-08-27",
"url": "https://access.redhat.com/errata/RHSA-2025:14748"
}
],
"source_lang": "en-US",
"title": "IBM QRadar SIEM Komponente: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-08-27T22:00:00.000+00:00",
"generator": {
"date": "2025-08-28T05:52:03.530+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-1905",
"initial_release_date": "2025-08-25T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-08-25T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-08-27T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "2"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c7.5.0 UP13 IF01",
"product": {
"name": "IBM QRadar SIEM \u003c7.5.0 UP13 IF01",
"product_id": "T046492"
}
},
{
"category": "product_version",
"name": "7.5.0 UP13 IF01",
"product": {
"name": "IBM QRadar SIEM 7.5.0 UP13 IF01",
"product_id": "T046492-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:7.5.0_up13_if01"
}
}
}
],
"category": "product_name",
"name": "QRadar SIEM"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-17543",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2019-17543"
},
{
"cve": "CVE-2019-5427",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2019-5427"
},
{
"cve": "CVE-2020-5260",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2020-5260"
},
{
"cve": "CVE-2022-49058",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49058"
},
{
"cve": "CVE-2022-49111",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49111"
},
{
"cve": "CVE-2022-49136",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49136"
},
{
"cve": "CVE-2022-49788",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49788"
},
{
"cve": "CVE-2022-49846",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49846"
},
{
"cve": "CVE-2022-49977",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-49977"
},
{
"cve": "CVE-2022-50020",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2022-50020"
},
{
"cve": "CVE-2024-23337",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-23337"
},
{
"cve": "CVE-2024-28956",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-28956"
},
{
"cve": "CVE-2024-34397",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-34397"
},
{
"cve": "CVE-2024-43420",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-43420"
},
{
"cve": "CVE-2024-45332",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-45332"
},
{
"cve": "CVE-2024-50154",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-50154"
},
{
"cve": "CVE-2024-50349",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-50349"
},
{
"cve": "CVE-2024-52006",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-52006"
},
{
"cve": "CVE-2024-52533",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-52533"
},
{
"cve": "CVE-2024-53920",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-53920"
},
{
"cve": "CVE-2024-54661",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-54661"
},
{
"cve": "CVE-2024-57980",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-57980"
},
{
"cve": "CVE-2024-58002",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-58002"
},
{
"cve": "CVE-2024-6531",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2024-6531"
},
{
"cve": "CVE-2025-20012",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-20012"
},
{
"cve": "CVE-2025-20623",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-20623"
},
{
"cve": "CVE-2025-21905",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21905"
},
{
"cve": "CVE-2025-21919",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21919"
},
{
"cve": "CVE-2025-21928",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21928"
},
{
"cve": "CVE-2025-21991",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-21991"
},
{
"cve": "CVE-2025-22004",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-22004"
},
{
"cve": "CVE-2025-22020",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-22020"
},
{
"cve": "CVE-2025-23150",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-23150"
},
{
"cve": "CVE-2025-24495",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-24495"
},
{
"cve": "CVE-2025-27613",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-27613"
},
{
"cve": "CVE-2025-27614",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-27614"
},
{
"cve": "CVE-2025-32415",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-32415"
},
{
"cve": "CVE-2025-37738",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-37738"
},
{
"cve": "CVE-2025-37890",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-37890"
},
{
"cve": "CVE-2025-38052",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-38052"
},
{
"cve": "CVE-2025-38079",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-38079"
},
{
"cve": "CVE-2025-38086",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-38086"
},
{
"cve": "CVE-2025-4373",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-4373"
},
{
"cve": "CVE-2025-46835",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-46835"
},
{
"cve": "CVE-2025-47273",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-47273"
},
{
"cve": "CVE-2025-48060",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-48060"
},
{
"cve": "CVE-2025-48384",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-48384"
},
{
"cve": "CVE-2025-48385",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-48385"
},
{
"cve": "CVE-2025-49794",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-49794"
},
{
"cve": "CVE-2025-49796",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-49796"
},
{
"cve": "CVE-2025-52434",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-52434"
},
{
"cve": "CVE-2025-52520",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-52520"
},
{
"cve": "CVE-2025-53506",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-53506"
},
{
"cve": "CVE-2025-55668",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-55668"
},
{
"cve": "CVE-2025-6021",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-6021"
},
{
"cve": "CVE-2025-6965",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-6965"
},
{
"cve": "CVE-2025-7425",
"product_status": {
"known_affected": [
"67646",
"T046492"
]
},
"release_date": "2025-08-25T22:00:00.000+00:00",
"title": "CVE-2025-7425"
}
]
}
wid-sec-w-2025-2063
Vulnerability from csaf_certbund
Published
2025-09-15 22:00
Modified
2025-10-09 22:00
Summary
Apple macOS Sequoia, Sonoma und Tahoe: Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.
Angriff
Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um Root-Rechte zu erlangen, beliebigen Code auszuführen, einen Denial-of-Service-Zustand herbeizuführen, vertrauliche Informationen preiszugeben, Daten zu verändern oder Sicherheitsmaßnahmen zu umgehen.
Betroffene Betriebssysteme
- MacOS X
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Apple macOS ist ein Betriebssystem, das auf FreeBSD und Mach basiert.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Apple macOS ausnutzen, um Root-Rechte zu erlangen, beliebigen Code auszuf\u00fchren, einen Denial-of-Service-Zustand herbeizuf\u00fchren, vertrauliche Informationen preiszugeben, Daten zu ver\u00e4ndern oder Sicherheitsma\u00dfnahmen zu umgehen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- MacOS X",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-2063 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2063.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-2063 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2063"
},
{
"category": "external",
"summary": "APPLE-SA-09-15-2025-5 macOS Tahoe 26 vom 2025-09-15",
"url": "https://lists.apple.com/archives/security-announce/2025/Sep/msg00004.html"
},
{
"category": "external",
"summary": "APPLE-SA-09-15-2025-6 macOS Sequoia 15.7 vom 2025-09-15",
"url": "https://lists.apple.com/archives/security-announce/2025/Sep/msg00005.html"
},
{
"category": "external",
"summary": "APPLE-SA-09-15-2025-7 macOS Sonoma 14.8 vom 2025-09-15",
"url": "https://lists.apple.com/archives/security-announce/2025/Sep/msg00006.html"
},
{
"category": "external",
"summary": "macOS Tahoe 26 vom 2025-09-15",
"url": "https://support.apple.com/en-us/125110"
},
{
"category": "external",
"summary": "macOS Sequoia 15.7 vom 2025-09-15",
"url": "https://support.apple.com/en-us/125111"
},
{
"category": "external",
"summary": "macOS Sonoma 14.8 vom 2025-09-15",
"url": "https://support.apple.com/en-us/125112"
}
],
"source_lang": "en-US",
"title": "Apple macOS Sequoia, Sonoma und Tahoe: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-10-09T22:00:00.000+00:00",
"generator": {
"date": "2025-10-10T06:19:53.662+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-2063",
"initial_release_date": "2025-09-15T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-09-15T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-09-16T22:00:00.000+00:00",
"number": "2",
"summary": "Referenz(en) aufgenommen: EUVD-2025-29277, EUVD-2025-29271, EUVD-2025-29273, EUVD-2025-29274, EUVD-2025-29275, EUVD-2025-29278, EUVD-2025-29276"
},
{
"date": "2025-10-09T22:00:00.000+00:00",
"number": "3",
"summary": "CVE erg\u00e4nzt"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "Tahoe \u003c26",
"product": {
"name": "Apple macOS Tahoe \u003c26",
"product_id": "T047014"
}
},
{
"category": "product_version",
"name": "Tahoe 26",
"product": {
"name": "Apple macOS Tahoe 26",
"product_id": "T047014-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:tahoe__26"
}
}
},
{
"category": "product_version_range",
"name": "Sequoia \u003c15.7",
"product": {
"name": "Apple macOS Sequoia \u003c15.7",
"product_id": "T047015"
}
},
{
"category": "product_version",
"name": "Sequoia 15.7",
"product": {
"name": "Apple macOS Sequoia 15.7",
"product_id": "T047015-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:sequoia__15.7"
}
}
},
{
"category": "product_version_range",
"name": "Sonoma \u003c14.8",
"product": {
"name": "Apple macOS Sonoma \u003c14.8",
"product_id": "T047016"
}
},
{
"category": "product_version",
"name": "Sonoma 14.8",
"product": {
"name": "Apple macOS Sonoma 14.8",
"product_id": "T047016-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:apple:mac_os:sonoma__14.8"
}
}
}
],
"category": "product_name",
"name": "macOS"
}
],
"category": "vendor",
"name": "Apple"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-27280",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2024-27280"
},
{
"cve": "CVE-2025-24088",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-24088"
},
{
"cve": "CVE-2025-24197",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-24197"
},
{
"cve": "CVE-2025-31255",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-31255"
},
{
"cve": "CVE-2025-31259",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-31259"
},
{
"cve": "CVE-2025-31268",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-31268"
},
{
"cve": "CVE-2025-31269",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-31269"
},
{
"cve": "CVE-2025-31270",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-31270"
},
{
"cve": "CVE-2025-31271",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-31271"
},
{
"cve": "CVE-2025-40909",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-40909"
},
{
"cve": "CVE-2025-43190",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43190"
},
{
"cve": "CVE-2025-43204",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43204"
},
{
"cve": "CVE-2025-43207",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43207"
},
{
"cve": "CVE-2025-43208",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43208"
},
{
"cve": "CVE-2025-43231",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43231"
},
{
"cve": "CVE-2025-43262",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43262"
},
{
"cve": "CVE-2025-43272",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43272"
},
{
"cve": "CVE-2025-43273",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43273"
},
{
"cve": "CVE-2025-43277",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43277"
},
{
"cve": "CVE-2025-43279",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43279"
},
{
"cve": "CVE-2025-43283",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43283"
},
{
"cve": "CVE-2025-43285",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43285"
},
{
"cve": "CVE-2025-43286",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43286"
},
{
"cve": "CVE-2025-43287",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43287"
},
{
"cve": "CVE-2025-43291",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43291"
},
{
"cve": "CVE-2025-43292",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43292"
},
{
"cve": "CVE-2025-43293",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43293"
},
{
"cve": "CVE-2025-43294",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43294"
},
{
"cve": "CVE-2025-43295",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43295"
},
{
"cve": "CVE-2025-43296",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43296"
},
{
"cve": "CVE-2025-43297",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43297"
},
{
"cve": "CVE-2025-43298",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43298"
},
{
"cve": "CVE-2025-43299",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43299"
},
{
"cve": "CVE-2025-43301",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43301"
},
{
"cve": "CVE-2025-43302",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43302"
},
{
"cve": "CVE-2025-43303",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43303"
},
{
"cve": "CVE-2025-43304",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43304"
},
{
"cve": "CVE-2025-43305",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43305"
},
{
"cve": "CVE-2025-43307",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43307"
},
{
"cve": "CVE-2025-43308",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43308"
},
{
"cve": "CVE-2025-43310",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43310"
},
{
"cve": "CVE-2025-43311",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43311"
},
{
"cve": "CVE-2025-43312",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43312"
},
{
"cve": "CVE-2025-43314",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43314"
},
{
"cve": "CVE-2025-43315",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43315"
},
{
"cve": "CVE-2025-43316",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43316"
},
{
"cve": "CVE-2025-43317",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43317"
},
{
"cve": "CVE-2025-43318",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43318"
},
{
"cve": "CVE-2025-43319",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43319"
},
{
"cve": "CVE-2025-43321",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43321"
},
{
"cve": "CVE-2025-43325",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43325"
},
{
"cve": "CVE-2025-43326",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43326"
},
{
"cve": "CVE-2025-43327",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43327"
},
{
"cve": "CVE-2025-43328",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43328"
},
{
"cve": "CVE-2025-43329",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43329"
},
{
"cve": "CVE-2025-43330",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43330"
},
{
"cve": "CVE-2025-43331",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43331"
},
{
"cve": "CVE-2025-43332",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43332"
},
{
"cve": "CVE-2025-43333",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43333"
},
{
"cve": "CVE-2025-43337",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43337"
},
{
"cve": "CVE-2025-43340",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43340"
},
{
"cve": "CVE-2025-43341",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43341"
},
{
"cve": "CVE-2025-43342",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43342"
},
{
"cve": "CVE-2025-43343",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43343"
},
{
"cve": "CVE-2025-43344",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43344"
},
{
"cve": "CVE-2025-43346",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43346"
},
{
"cve": "CVE-2025-43347",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43347"
},
{
"cve": "CVE-2025-43349",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43349"
},
{
"cve": "CVE-2025-43353",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43353"
},
{
"cve": "CVE-2025-43354",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43354"
},
{
"cve": "CVE-2025-43355",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43355"
},
{
"cve": "CVE-2025-43356",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43356"
},
{
"cve": "CVE-2025-43357",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43357"
},
{
"cve": "CVE-2025-43358",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43358"
},
{
"cve": "CVE-2025-43359",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43359"
},
{
"cve": "CVE-2025-43366",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43366"
},
{
"cve": "CVE-2025-43367",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43367"
},
{
"cve": "CVE-2025-43368",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43368"
},
{
"cve": "CVE-2025-43369",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43369"
},
{
"cve": "CVE-2025-43372",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-43372"
},
{
"cve": "CVE-2025-6965",
"product_status": {
"known_affected": [
"T047016",
"T047014",
"T047015"
]
},
"release_date": "2025-09-15T22:00:00.000+00:00",
"title": "CVE-2025-6965"
}
]
}
wid-sec-w-2025-1646
Vulnerability from csaf_certbund
Published
2025-07-27 22:00
Modified
2025-10-29 23:00
Summary
Red Hat Enterprise Linux (nodejs, perl): Mehrere Schwachstellen
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung
Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
Angriff
Ein lokaler oder entfernter authentisierter Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um beliebigen Code auszuführen oder andere nicht spezifizierte Effekte zu verursachen.
Betroffene Betriebssysteme
- UNIX
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein lokaler oder entfernter authentisierter Angreifer kann mehrere Schwachstellen in Red Hat Enterprise Linux ausnutzen, um beliebigen Code auszuf\u00fchren oder andere nicht spezifizierte Effekte zu verursachen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- UNIX",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2025-1646 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-1646.json"
},
{
"category": "self",
"summary": "WID-SEC-2025-1646 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-1646"
},
{
"category": "external",
"summary": "RedHat Security Advisory vom 2025-07-27",
"url": "https://access.redhat.com/errata/RHSA-2025:11803"
},
{
"category": "external",
"summary": "RedHat Security Advisory vom 2025-07-27",
"url": "https://access.redhat.com/errata/RHSA-2025:11805"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11933 vom 2025-07-28",
"url": "https://access.redhat.com/errata/RHSA-2025:11933"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-11803 vom 2025-07-28",
"url": "https://linux.oracle.com/errata/ELSA-2025-11803.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7676-1 vom 2025-07-28",
"url": "https://ubuntu.com/security/notices/USN-7676-1"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:11992 vom 2025-07-28",
"url": "https://access.redhat.com/errata/RHSA-2025:11992"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:12010 vom 2025-07-29",
"url": "https://access.redhat.com/errata/RHSA-2025:12010"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:12036 vom 2025-07-29",
"url": "https://access.redhat.com/errata/RHSA-2025:12036"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-11992 vom 2025-07-29",
"url": "https://linux.oracle.com/errata/ELSA-2025-11992.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-12010 vom 2025-07-29",
"url": "https://linux.oracle.com/errata/ELSA-2025-12010.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-11933 vom 2025-07-29",
"url": "https://linux.oracle.com/errata/ELSA-2025-11933.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:12349 vom 2025-07-31",
"url": "https://access.redhat.com/errata/RHSA-2025:12349"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-11802 vom 2025-07-30",
"url": "http://linux.oracle.com/errata/ELSA-2025-11802.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7679-1 vom 2025-07-30",
"url": "https://ubuntu.com/security/notices/USN-7679-1"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:12521 vom 2025-08-04",
"url": "https://access.redhat.com/errata/RHSA-2025:12521"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2025-2949 vom 2025-08-05",
"url": "https://alas.aws.amazon.com/AL2/ALAS2-2025-2949.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:12749 vom 2025-08-04",
"url": "https://access.redhat.com/errata/RHSA-2025:12749"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:12522 vom 2025-08-05",
"url": "https://access.redhat.com/errata/RHSA-2025:12522"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:02672-1 vom 2025-08-04",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/3MKD7BSPQBWIRKKAIW2QSG7MGMUN3I7U/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:12904 vom 2025-08-05",
"url": "https://access.redhat.com/errata/RHSA-2025:12904"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:12905 vom 2025-08-05",
"url": "https://access.redhat.com/errata/RHSA-2025:12905"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:12901 vom 2025-08-05",
"url": "https://access.redhat.com/errata/RHSA-2025:12901"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2025-12349 vom 2025-08-07",
"url": "http://linux.oracle.com/errata/ELSA-2025-12349.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:13335 vom 2025-08-07",
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:14101 vom 2025-08-19",
"url": "https://access.redhat.com/errata/RHSA-2025:14101"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2025-2973 vom 2025-08-19",
"url": "https://alas.aws.amazon.com/AL2/ALAS2-2025-2973.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7243787 vom 2025-09-02",
"url": "https://www.ibm.com/support/pages/node/7243787"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2-2025-2978 vom 2025-09-04",
"url": "https://alas.aws.amazon.com/AL2/ALAS2-2025-2978.html"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7244160 vom 2025-09-05",
"url": "https://www.ibm.com/support/pages/node/7244160"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20674-1 vom 2025-09-10",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-September/022477.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:15828 vom 2025-09-15",
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:15827 vom 2025-09-15",
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "external",
"summary": "cPanel 132 Change Log vom 2025-10-01",
"url": "https://docs.cpanel.net/changelogs/132-change-log/"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:18219 vom 2025-10-16",
"url": "https://access.redhat.com/errata/RHSA-2025:18219"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:18217 vom 2025-10-22",
"url": "https://access.redhat.com/errata/RHSA-2025:18217"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:18218 vom 2025-10-22",
"url": "https://access.redhat.com/errata/RHSA-2025:18218"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:15397 vom 2025-10-22",
"url": "https://access.redhat.com/errata/RHSA-2025:15397"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7249276 vom 2025-10-27",
"url": "https://www.ibm.com/support/pages/node/7249276"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:19046 vom 2025-10-29",
"url": "https://access.redhat.com/errata/RHSA-2025:19046"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:19041 vom 2025-10-30",
"url": "https://access.redhat.com/errata/RHSA-2025:19041"
}
],
"source_lang": "en-US",
"title": "Red Hat Enterprise Linux (nodejs, perl): Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2025-10-29T23:00:00.000+00:00",
"generator": {
"date": "2025-10-30T08:13:42.453+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.4.0"
}
},
"id": "WID-SEC-W-2025-1646",
"initial_release_date": "2025-07-27T22:00:00.000+00:00",
"revision_history": [
{
"date": "2025-07-27T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2025-07-28T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat, Oracle Linux und Ubuntu aufgenommen"
},
{
"date": "2025-07-29T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-07-30T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat, Oracle Linux und Ubuntu aufgenommen"
},
{
"date": "2025-08-03T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-08-04T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Amazon und Red Hat aufgenommen"
},
{
"date": "2025-08-05T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-08-06T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2025-08-07T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-08-19T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Red Hat und Amazon aufgenommen"
},
{
"date": "2025-09-02T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2025-09-04T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2025-09-07T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2025-09-10T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-09-15T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-09-30T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates aufgenommen"
},
{
"date": "2025-10-16T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-10-21T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-10-27T23:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2025-10-28T23:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-10-29T23:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von Red Hat aufgenommen"
}
],
"status": "final",
"version": "21"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "IBM App Connect Enterprise",
"product": {
"name": "IBM App Connect Enterprise",
"product_id": "T032495",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:app_connect_enterprise:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "Operator",
"product": {
"name": "IBM MQ Operator",
"product_id": "T036688",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:operator"
}
}
},
{
"category": "product_version",
"name": "Container",
"product": {
"name": "IBM MQ Container",
"product_id": "T040640",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:mq:container"
}
}
}
],
"category": "product_name",
"name": "MQ"
},
{
"category": "product_name",
"name": "IBM QRadar SIEM",
"product": {
"name": "IBM QRadar SIEM",
"product_id": "T021415",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:-"
}
}
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version",
"name": "8",
"product": {
"name": "Red Hat Enterprise Linux 8",
"product_id": "T045679",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8"
}
}
},
{
"category": "product_version",
"name": "9",
"product": {
"name": "Red Hat Enterprise Linux 9",
"product_id": "T045680",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "Container Platform \u003c4.18.27",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.18.27",
"product_id": "T048184"
}
},
{
"category": "product_version",
"name": "Container Platform 4.18.27",
"product": {
"name": "Red Hat OpenShift Container Platform 4.18.27",
"product_id": "T048184-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.18.27"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c132.0.0",
"product": {
"name": "cPanel cPanel/WHM \u003c132.0.0",
"product_id": "T047273"
}
},
{
"category": "product_version",
"name": "132.0.0",
"product": {
"name": "cPanel cPanel/WHM 132.0.0",
"product_id": "T047273-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:cpanel:cpanel_whm:132.0.0"
}
}
}
],
"category": "product_name",
"name": "cPanel/WHM"
}
],
"category": "vendor",
"name": "cPanel"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-40909",
"product_status": {
"known_affected": [
"67646",
"T047273",
"T048184",
"T036688",
"T004914",
"T032495",
"T045679",
"T002207",
"T000126",
"T021415",
"T045680",
"398363",
"T040640"
]
},
"release_date": "2025-07-27T22:00:00.000+00:00",
"title": "CVE-2025-40909"
},
{
"cve": "CVE-2025-6965",
"product_status": {
"known_affected": [
"67646",
"T047273",
"T048184",
"T036688",
"T004914",
"T032495",
"T045679",
"T002207",
"T000126",
"T021415",
"T045680",
"398363",
"T040640"
]
},
"release_date": "2025-07-27T22:00:00.000+00:00",
"title": "CVE-2025-6965"
}
]
}
rhsa-2025:12749
Vulnerability from csaf_redhat
Published
2025-08-04 16:35
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: sqlite security update
Notes
Topic
An update for sqlite is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for sqlite is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:12749",
"url": "https://access.redhat.com/errata/RHSA-2025:12749"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_12749.json"
}
],
"title": "Red Hat Security Advisory: sqlite security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:59+00:00",
"generator": {
"date": "2025-10-30T06:43:59+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:12749",
"initial_release_date": "2025-08-04T16:35:34+00:00",
"revision_history": [
{
"date": "2025-08-04T16:35:34+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-04T16:35:34+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:59+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:9.2::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:9.2::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-6.el9_2.2.src",
"product": {
"name": "sqlite-0:3.34.1-6.el9_2.2.src",
"product_id": "sqlite-0:3.34.1-6.el9_2.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-6.el9_2.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"product": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"product_id": "sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-6.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"product": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"product_id": "sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-6.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product_id": "lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-6.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-6.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product_id": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-6.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-6.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-6.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-6.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.34.1-6.el9_2.2.aarch64",
"product": {
"name": "sqlite-0:3.34.1-6.el9_2.2.aarch64",
"product_id": "sqlite-0:3.34.1-6.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-6.el9_2.2?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"product": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"product_id": "sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-6.el9_2.2?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"product": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"product_id": "sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-6.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"product": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"product_id": "sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-6.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product_id": "lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-6.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-6.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product_id": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-6.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-6.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-6.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-6.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"product": {
"name": "sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"product_id": "sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-6.el9_2.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"product": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"product_id": "sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-6.el9_2.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"product": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"product_id": "sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-6.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"product": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"product_id": "sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-6.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product_id": "lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-6.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-6.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product_id": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-6.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-6.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-6.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-6.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.34.1-6.el9_2.2.i686",
"product": {
"name": "sqlite-0:3.34.1-6.el9_2.2.i686",
"product_id": "sqlite-0:3.34.1-6.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-6.el9_2.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"product": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"product_id": "sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-6.el9_2.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"product": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"product_id": "sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-6.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"product": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"product_id": "sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-6.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product_id": "lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-6.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-6.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product_id": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-6.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-6.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-6.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-6.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.34.1-6.el9_2.2.x86_64",
"product": {
"name": "sqlite-0:3.34.1-6.el9_2.2.x86_64",
"product_id": "sqlite-0:3.34.1-6.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-6.el9_2.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"product": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"product_id": "sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-6.el9_2.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"product": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"product_id": "sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-6.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"product": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"product_id": "sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-6.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product_id": "lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-6.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-6.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product_id": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-6.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-6.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-6.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-6.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.34.1-6.el9_2.2.s390x",
"product": {
"name": "sqlite-0:3.34.1-6.el9_2.2.s390x",
"product_id": "sqlite-0:3.34.1-6.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-6.el9_2.2?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"product": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"product_id": "sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-6.el9_2.2?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-6.el9_2.2.src as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.src"
},
"product_reference": "sqlite-0:3.34.1-6.el9_2.2.src",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.2)",
"product_id": "AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "AppStream-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-6.el9_2.2.src as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.src"
},
"product_reference": "sqlite-0:3.34.1-6.el9_2.2.src",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.2)",
"product_id": "BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"relates_to_product_reference": "BaseOS-9.2.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.src",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-04T16:35:34+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.src",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:12749"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.src",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.src",
"AppStream-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"AppStream-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:lemon-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.src",
"BaseOS-9.2.0.Z.E4S:sqlite-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-debugsource-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-devel-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-6.el9_2.2.x86_64",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.aarch64",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.i686",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.ppc64le",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.s390x",
"BaseOS-9.2.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-6.el9_2.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:11992
Vulnerability from csaf_redhat
Published
2025-07-28 18:19
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: sqlite security update
Notes
Topic
An update for sqlite is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for sqlite is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11992",
"url": "https://access.redhat.com/errata/RHSA-2025:11992"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11992.json"
}
],
"title": "Red Hat Security Advisory: sqlite security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:49+00:00",
"generator": {
"date": "2025-10-30T06:43:49+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:11992",
"initial_release_date": "2025-07-28T18:19:49+00:00",
"revision_history": [
{
"date": "2025-07-28T18:19:49+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-28T18:19:49+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:49+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-8.el9_6.aarch64",
"product": {
"name": "sqlite-0:3.34.1-8.el9_6.aarch64",
"product_id": "sqlite-0:3.34.1-8.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-8.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"product": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"product_id": "sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-8.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"product": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"product_id": "sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-8.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product_id": "lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-8.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-8.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product_id": "sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-8.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-8.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-8.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-8.el9_6?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"product": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"product_id": "sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-8.el9_6?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-8.el9_6.ppc64le",
"product": {
"name": "sqlite-0:3.34.1-8.el9_6.ppc64le",
"product_id": "sqlite-0:3.34.1-8.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-8.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"product": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"product_id": "sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-8.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"product": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"product_id": "sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-8.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product_id": "lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-8.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-8.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product_id": "sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-8.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-8.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-8.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-8.el9_6?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"product": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"product_id": "sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-8.el9_6?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-8.el9_6.i686",
"product": {
"name": "sqlite-0:3.34.1-8.el9_6.i686",
"product_id": "sqlite-0:3.34.1-8.el9_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-8.el9_6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-8.el9_6.i686",
"product": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.i686",
"product_id": "sqlite-devel-0:3.34.1-8.el9_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-8.el9_6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"product": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"product_id": "sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-8.el9_6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"product": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"product_id": "lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-8.el9_6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-8.el9_6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"product_id": "sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-8.el9_6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-8.el9_6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-8.el9_6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-8.el9_6?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-8.el9_6.i686",
"product": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.i686",
"product_id": "sqlite-libs-0:3.34.1-8.el9_6.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-8.el9_6?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-8.el9_6.x86_64",
"product": {
"name": "sqlite-0:3.34.1-8.el9_6.x86_64",
"product_id": "sqlite-0:3.34.1-8.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-8.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"product": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"product_id": "sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-8.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"product": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"product_id": "sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-8.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product_id": "lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-8.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-8.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product_id": "sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-8.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-8.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-8.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-8.el9_6?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"product": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"product_id": "sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-8.el9_6?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-8.el9_6.s390x",
"product": {
"name": "sqlite-0:3.34.1-8.el9_6.s390x",
"product_id": "sqlite-0:3.34.1-8.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-8.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-8.el9_6.s390x",
"product": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.s390x",
"product_id": "sqlite-devel-0:3.34.1-8.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-8.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"product": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"product_id": "sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-8.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"product": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"product_id": "lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-8.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-8.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"product_id": "sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-8.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-8.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-8.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-8.el9_6?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-8.el9_6.s390x",
"product": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.s390x",
"product_id": "sqlite-libs-0:3.34.1-8.el9_6.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-8.el9_6?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-8.el9_6.src",
"product": {
"name": "sqlite-0:3.34.1-8.el9_6.src",
"product_id": "sqlite-0:3.34.1-8.el9_6.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-8.el9_6?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.i686"
},
"product_reference": "lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-8.el9_6.src as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.src"
},
"product_reference": "sqlite-0:3.34.1-8.el9_6.src",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-devel-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-devel-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-libs-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-libs-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.i686"
},
"product_reference": "lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-8.el9_6.src as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.src"
},
"product_reference": "sqlite-0:3.34.1-8.el9_6.src",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-devel-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-devel-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-libs-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-libs-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 9)",
"product_id": "BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64",
"relates_to_product_reference": "BaseOS-9.6.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.src",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-28T18:19:49+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.src",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11992"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.src",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.src",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"AppStream-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:lemon-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.src",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-debugsource-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-devel-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.34.1-8.el9_6.x86_64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.aarch64",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.i686",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.ppc64le",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.s390x",
"BaseOS-9.6.0.Z.MAIN.EUS:sqlite-tools-debuginfo-0:3.34.1-8.el9_6.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:15828
Vulnerability from csaf_redhat
Published
2025-09-15 15:14
Modified
2025-10-30 06:44
Summary
Red Hat Security Advisory: updated web-terminal/tooling container image
Notes
Topic
Updated web-terminal/tooling container image is now available for Red Hat Web Terminal 1.11 on RHEL 9.
Details
The Red Hat Web Terminal 1.11 on RHEL 9 container images have been updated to fix the following important CVEs: CVE-2025-5914, CVE-2025-49794, CVE-2025-49796, CVE-2025-6020, CVE-2025-48384, CVE-2025-48385, CVE-2025-7425, CVE-2025-6965, CVE-2025-8941.
Users of Red Hat Web Terminal 1.11 on RHEL 9 container images are advised to
upgrade to these updated images, which contain backported patches to correct
these security issues, fix these bugs and add these enhancements. Users of these
images are also encouraged to rebuild all container images that depend on these
images.
You can find images updated by this advisory in Red Hat Container Catalog (see References).
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated web-terminal/tooling container image is now available for Red Hat Web Terminal 1.11 on RHEL 9.",
"title": "Topic"
},
{
"category": "general",
"text": "The Red Hat Web Terminal 1.11 on RHEL 9 container images have been updated to fix the following important CVEs: CVE-2025-5914, CVE-2025-49794, CVE-2025-49796, CVE-2025-6020, CVE-2025-48384, CVE-2025-48385, CVE-2025-7425, CVE-2025-6965, CVE-2025-8941.\n\nUsers of Red Hat Web Terminal 1.11 on RHEL 9 container images are advised to\nupgrade to these updated images, which contain backported patches to correct\nthese security issues, fix these bugs and add these enhancements. Users of these\nimages are also encouraged to rebuild all container images that depend on these\nimages.\n\nYou can find images updated by this advisory in Red Hat Container Catalog (see References).",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:15828",
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://catalog.redhat.com/software/containers/registry/registry.access.redhat.com/repository/web-terminal/tooling",
"url": "https://catalog.redhat.com/software/containers/registry/registry.access.redhat.com/repository/web-terminal/tooling"
},
{
"category": "external",
"summary": "2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "2372512",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372512"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "2388220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388220"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_15828.json"
}
],
"title": "Red Hat Security Advisory: updated web-terminal/tooling container image",
"tracking": {
"current_release_date": "2025-10-30T06:44:02+00:00",
"generator": {
"date": "2025-10-30T06:44:02+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:15828",
"initial_release_date": "2025-09-15T15:14:08+00:00",
"revision_history": [
{
"date": "2025-09-15T15:14:08+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-15T15:14:08+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:44:02+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Web Terminal 1.11 on RHEL 9",
"product": {
"name": "Red Hat Web Terminal 1.11 on RHEL 9",
"product_id": "9Base-WebTerminal-1.11",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:webterminal:1.11::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Web Terminal"
},
{
"branches": [
{
"category": "product_version",
"name": "web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"product": {
"name": "web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"product_id": "web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"product_identification_helper": {
"purl": "pkg:oci/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603?arch=amd64\u0026repository_url=registry.redhat.io/web-terminal/web-terminal-rhel9-operator\u0026tag=1.11-19"
}
}
},
{
"category": "product_version",
"name": "web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64",
"product": {
"name": "web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64",
"product_id": "web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64",
"product_identification_helper": {
"purl": "pkg:oci/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf?arch=amd64\u0026repository_url=registry.redhat.io/web-terminal/web-terminal-tooling-rhel9\u0026tag=1.11-8"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64 as a component of Red Hat Web Terminal 1.11 on RHEL 9",
"product_id": "9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64"
},
"product_reference": "web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"relates_to_product_reference": "9Base-WebTerminal-1.11"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64 as a component of Red Hat Web Terminal 1.11 on RHEL 9",
"product_id": "9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
},
"product_reference": "web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64",
"relates_to_product_reference": "9Base-WebTerminal-1.11"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-5914",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2025-06-06T17:58:25.491000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370861"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as Important because it allows a local attacker with limited privileges to trigger a double-free in libarchive\u0027s RAR parser by providing a specially crafted RAR archive. Successful exploitation could result in code execution or application crashes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5914"
},
{
"category": "external",
"summary": "RHBZ#2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2598",
"url": "https://github.com/libarchive/libarchive/pull/2598"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0",
"url": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0"
}
],
"release_date": "2025-05-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c"
},
{
"acknowledgments": [
{
"names": [
"Olivier BAL-PETRE"
],
"organization": "ANSSI - French Cybersecurity Agency"
}
],
"cve": "CVE-2025-6020",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-12T16:33:01.214000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372512"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local users to elevate their privileges to root via multiple symlink attacks and race conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "linux-pam: Linux-pam directory Traversal",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in pam_namespace marked as Important rather than Moderate due to its direct impact on privilege boundaries and the ease of exploitation in common configurations. By leveraging symlink attacks or race conditions in polyinstantiated directories under their control, unprivileged local users can escalate to root, compromising the entire system. Since pam_namespace is often used in multi-user environments (e.g., shared systems, terminal servers, containers), a misconfigured or partially protected setup becomes a single point of failure. The attack does not require special capabilities or kernel-level exploits\u2014just timing and control over certain paths\u2014making it both reliable and low-barrier. Moreover, privilege escalation flaws like this can be chained with other vulnerabilities to persist or evade detection, further amplifying the risk.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6020"
},
{
"category": "external",
"summary": "RHBZ#2372512",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372512"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6020"
}
],
"release_date": "2025-06-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "Disable the `pam_namespace` module if it is not essential for your environment, or carefully review and configure it to avoid operating on any directories or paths that can be influenced or controlled by unprivileged users, such as user home directories or world-writable locations like `/tmp`.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "linux-pam: Linux-pam directory Traversal"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-8941",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-08-13T12:11:55.270000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2388220"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in linux-pam. The pam_namespace module may improperly handle user-controlled paths, allowing local users to exploit symlink attacks and race conditions to elevate their privileges to root. This CVE provides a \"complete\" fix for CVE-2025-6020.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "linux-pam: Incomplete fix for CVE-2025-6020",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in pam_namespace is rated Important because it allows a local, unprivileged user to escalate privileges to root by exploiting symlink attacks or race conditions in polyinstantiated directories under their control. Successful exploitation requires only the ability to create and manipulate filesystem paths in such directories, without the need for special capabilities or kernel-level vulnerabilities. In multi-user environments\u2014such as shared systems, terminal servers, or certain container deployments, an unprotected or misconfigured pam_namespace configuration can serve as a single point of compromise. Privilege escalation flaws of this nature may also be chained with other vulnerabilities to maintain persistence or evade detection, further increasing the overall impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-8941"
},
{
"category": "external",
"summary": "RHBZ#2388220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388220"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-8941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8941"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-8941",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-8941"
}
],
"release_date": "2025-08-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "Disable the `pam_namespace` module if it is not essential for your environment, or carefully review and configure it to avoid operating on any directories or paths that can be influenced or controlled by unprivileged users, such as user home directories or world-writable locations like `/tmp`.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "linux-pam: Incomplete fix for CVE-2025-6020"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:14:08+00:00",
"details": "The Red Hat Web Terminal 1.11 on RHEL 9 container images provided by this update\ncan be downloaded from the Red Hat Container Registry at\nregistry.access.redhat.com. Installation instructions for your platform are\navailable at Red Hat Container Catalog (see References).\n\nDockerfiles and scripts should be amended either to refer to this new image\nspecifically, or to the latest image generally.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15828"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.11:web-terminal/web-terminal-rhel9-operator@sha256:97ba3d6db8959c3ccfef82325d9fe8098fb86cc4ecb0bb00933340c693d98603_amd64",
"9Base-WebTerminal-1.11:web-terminal/web-terminal-tooling-rhel9@sha256:fcda84411ef1356fb44a6b16d1ab95189f31ca056cc977114c395da0c5b202bf_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:14101
Vulnerability from csaf_redhat
Published
2025-08-19 15:29
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: mingw-sqlite security update
Notes
Topic
An update for mingw-sqlite is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server. Version 2 and version 3 binaries are named to permit each to be installed on a single host This package contains cross-compiled libraries and development tools for Windows.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for mingw-sqlite is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server. Version 2 and version 3 binaries are named to permit each to be installed on a single host This package contains cross-compiled libraries and development tools for Windows.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:14101",
"url": "https://access.redhat.com/errata/RHSA-2025:14101"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_14101.json"
}
],
"title": "Red Hat Security Advisory: mingw-sqlite security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:58+00:00",
"generator": {
"date": "2025-10-30T06:43:58+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:14101",
"initial_release_date": "2025-08-19T15:29:57+00:00",
"revision_history": [
{
"date": "2025-08-19T15:29:57+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-19T15:29:57+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:58+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux CRB (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::crb"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "mingw-sqlite-0:3.26.0.0-2.el8_10.src",
"product": {
"name": "mingw-sqlite-0:3.26.0.0-2.el8_10.src",
"product_id": "mingw-sqlite-0:3.26.0.0-2.el8_10.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mingw-sqlite@3.26.0.0-2.el8_10?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "mingw32-sqlite-0:3.26.0.0-2.el8_10.noarch",
"product": {
"name": "mingw32-sqlite-0:3.26.0.0-2.el8_10.noarch",
"product_id": "mingw32-sqlite-0:3.26.0.0-2.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mingw32-sqlite@3.26.0.0-2.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "mingw32-sqlite-static-0:3.26.0.0-2.el8_10.noarch",
"product": {
"name": "mingw32-sqlite-static-0:3.26.0.0-2.el8_10.noarch",
"product_id": "mingw32-sqlite-static-0:3.26.0.0-2.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mingw32-sqlite-static@3.26.0.0-2.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "mingw64-sqlite-0:3.26.0.0-2.el8_10.noarch",
"product": {
"name": "mingw64-sqlite-0:3.26.0.0-2.el8_10.noarch",
"product_id": "mingw64-sqlite-0:3.26.0.0-2.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mingw64-sqlite@3.26.0.0-2.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "mingw64-sqlite-static-0:3.26.0.0-2.el8_10.noarch",
"product": {
"name": "mingw64-sqlite-static-0:3.26.0.0-2.el8_10.noarch",
"product_id": "mingw64-sqlite-static-0:3.26.0.0-2.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mingw64-sqlite-static@3.26.0.0-2.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "mingw32-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"product": {
"name": "mingw32-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"product_id": "mingw32-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mingw32-sqlite-debuginfo@3.26.0.0-2.el8_10?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "mingw64-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"product": {
"name": "mingw64-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"product_id": "mingw64-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/mingw64-sqlite-debuginfo@3.26.0.0-2.el8_10?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "mingw-sqlite-0:3.26.0.0-2.el8_10.src as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:mingw-sqlite-0:3.26.0.0-2.el8_10.src"
},
"product_reference": "mingw-sqlite-0:3.26.0.0-2.el8_10.src",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mingw32-sqlite-0:3.26.0.0-2.el8_10.noarch as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-0:3.26.0.0-2.el8_10.noarch"
},
"product_reference": "mingw32-sqlite-0:3.26.0.0-2.el8_10.noarch",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mingw32-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch"
},
"product_reference": "mingw32-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mingw32-sqlite-static-0:3.26.0.0-2.el8_10.noarch as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-static-0:3.26.0.0-2.el8_10.noarch"
},
"product_reference": "mingw32-sqlite-static-0:3.26.0.0-2.el8_10.noarch",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mingw64-sqlite-0:3.26.0.0-2.el8_10.noarch as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-0:3.26.0.0-2.el8_10.noarch"
},
"product_reference": "mingw64-sqlite-0:3.26.0.0-2.el8_10.noarch",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mingw64-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch"
},
"product_reference": "mingw64-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "mingw64-sqlite-static-0:3.26.0.0-2.el8_10.noarch as a component of Red Hat Enterprise Linux CRB (v. 8)",
"product_id": "CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-static-0:3.26.0.0-2.el8_10.noarch"
},
"product_reference": "mingw64-sqlite-static-0:3.26.0.0-2.el8_10.noarch",
"relates_to_product_reference": "CRB-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"CRB-8.10.0.Z.MAIN.EUS:mingw-sqlite-0:3.26.0.0-2.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-static-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-static-0:3.26.0.0-2.el8_10.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-19T15:29:57+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"CRB-8.10.0.Z.MAIN.EUS:mingw-sqlite-0:3.26.0.0-2.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-static-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-static-0:3.26.0.0-2.el8_10.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:14101"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"CRB-8.10.0.Z.MAIN.EUS:mingw-sqlite-0:3.26.0.0-2.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-static-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-static-0:3.26.0.0-2.el8_10.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"CRB-8.10.0.Z.MAIN.EUS:mingw-sqlite-0:3.26.0.0-2.el8_10.src",
"CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw32-sqlite-static-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-debuginfo-0:3.26.0.0-2.el8_10.noarch",
"CRB-8.10.0.Z.MAIN.EUS:mingw64-sqlite-static-0:3.26.0.0-2.el8_10.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:11803
Vulnerability from csaf_redhat
Published
2025-07-28 01:55
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: nodejs:22 security update
Notes
Topic
An update for the nodejs:22 module is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nodejs:22 module is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11803",
"url": "https://access.redhat.com/errata/RHSA-2025:11803"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11803.json"
}
],
"title": "Red Hat Security Advisory: nodejs:22 security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:46+00:00",
"generator": {
"date": "2025-10-30T06:43:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:11803",
"initial_release_date": "2025-07-28T01:55:01+00:00",
"revision_history": [
{
"date": "2025-07-28T01:55:01+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-28T01:55:01+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.src::nodejs:22",
"product": {
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.src (nodejs:22)",
"product_id": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.src::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=src\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.src::nodejs:22",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.src (nodejs:22)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.src::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel8.10.0%2B23140%2B4056b950?arch=src\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.src::nodejs:22",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.src (nodejs:22)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.src::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel8.10.0%2B23140%2B4056b950?arch=src\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-docs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.noarch::nodejs:22",
"product": {
"name": "nodejs-docs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.noarch (nodejs:22)",
"product_id": "nodejs-docs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-docs@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=noarch\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.noarch (nodejs:22)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel8.10.0%2B23140%2B4056b950?arch=noarch\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch (nodejs:22)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel8.10.0%2B23140%2B4056b950?arch=noarch\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"product": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch (nodejs:22)",
"product_id": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging-bundler@2021.06-4.module%2Bel8.10.0%2B23140%2B4056b950?arch=noarch\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product": {
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22)",
"product_id": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22)",
"product_id": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22)",
"product_id": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.16.0.2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.16.0.2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=aarch64\u0026epoch=3\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product": {
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22)",
"product_id": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22)",
"product_id": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22)",
"product_id": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.16.0.2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.16.0.2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=ppc64le\u0026epoch=3\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product": {
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22)",
"product_id": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22)",
"product_id": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22)",
"product_id": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.16.0.2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.16.0.2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=s390x\u0026epoch=3\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product": {
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22)",
"product_id": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22)",
"product_id": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22)",
"product_id": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.16.0-2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.16.0.2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.16.0.2.module%2Bel8.10.0%2B23338%2Bc5a38893?arch=x86_64\u0026epoch=3\u0026rpmmod=nodejs:22:8100020250717142920:6d880403"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22"
},
"product_reference": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22"
},
"product_reference": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22"
},
"product_reference": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.src (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.src::nodejs:22"
},
"product_reference": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.src::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
},
"product_reference": "nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-docs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.noarch::nodejs:22"
},
"product_reference": "nodejs-docs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.noarch::nodejs:22"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.src (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.src::nodejs:22"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.src::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.src (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.src::nodejs:22"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.src::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22"
},
"product_reference": "nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-28T01:55:01+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11803"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-docs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el8.10.0+23140+4056b950.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el8.10.0+23140+4056b950.src::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el8.10.0+23140+4056b950.noarch::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.aarch64::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.ppc64le::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.s390x::nodejs:22",
"AppStream-8.10.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el8.10.0+23338+c5a38893.x86_64::nodejs:22"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:19041
Vulnerability from csaf_redhat
Published
2025-10-30 05:41
Modified
2025-10-30 06:44
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.14.58 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.14.58 is now available with
updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container
Platform 4.14.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container
Platform 4.14.58. See the following advisory for the RPM packages for this
release:
https://access.redhat.com/errata/155474
Space precludes documenting all of the container images in this advisory.
See the following Release Notes documentation, which will be updated
shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/
Security Fix(es):
* libarchive: Double free at archive_read_format_rar_seek_data() in
archive_read_support_format_rar.c (CVE-2025-5914)
* unbound: Unbound Cache poisoning (CVE-2025-5994)
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
* podman: Podman kube play command may overwrite host files (CVE-2025-9566)
* libxml: Heap use after free (UAF) leads to Denial of service (DoS)
(CVE-2025-49794)
* libxml: Type confusion leads to Denial of service (DoS) (CVE-2025-49796)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
All OpenShift Container Platform 4.14 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel. To check for available updates, use the OpenShift CLI (oc)
or web console. Instructions for upgrading a cluster are available at
https://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.14.58 is now available with\nupdates to packages and images that fix several bugs and add enhancements.\n\n This release includes a security update for Red Hat OpenShift Container\nPlatform 4.14.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container\nPlatform 4.14.58. See the following advisory for the RPM packages for this\nrelease:\n\nhttps://access.redhat.com/errata/155474\n\nSpace precludes documenting all of the container images in this advisory.\nSee the following Release Notes documentation, which will be updated\nshortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nSecurity Fix(es):\n\n* libarchive: Double free at archive_read_format_rar_seek_data() in\narchive_read_support_format_rar.c (CVE-2025-5914)\n* unbound: Unbound Cache poisoning (CVE-2025-5994)\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n* podman: Podman kube play command may overwrite host files (CVE-2025-9566)\n* libxml: Heap use after free (UAF) leads to Denial of service (DoS)\n(CVE-2025-49794)\n* libxml: Type confusion leads to Denial of service (DoS) (CVE-2025-49796)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section.\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:19041",
"url": "https://access.redhat.com/errata/RHSA-2025:19041"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "2380949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380949"
},
{
"category": "external",
"summary": "2393152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393152"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_19041.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.14.58 bug fix and security update",
"tracking": {
"current_release_date": "2025-10-30T06:44:09+00:00",
"generator": {
"date": "2025-10-30T06:44:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:19041",
"initial_release_date": "2025-10-30T05:41:47+00:00",
"revision_history": [
{
"date": "2025-10-30T05:41:47+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-10-30T05:41:47+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:44:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.14",
"product": {
"name": "Red Hat OpenShift Container Platform 4.14",
"product_id": "Red Hat OpenShift Container Platform 4.14",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.14::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-5914",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2025-06-06T17:58:25.491000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370861"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as Important because it allows a local attacker with limited privileges to trigger a double-free in libarchive\u0027s RAR parser by providing a specially crafted RAR archive. Successful exploitation could result in code execution or application crashes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.14"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5914"
},
{
"category": "external",
"summary": "RHBZ#2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2598",
"url": "https://github.com/libarchive/libarchive/pull/2598"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0",
"url": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0"
}
],
"release_date": "2025-05-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-30T05:41:47+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.14"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:19041"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.14"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c"
},
{
"cve": "CVE-2025-5994",
"cwe": {
"id": "CWE-349",
"name": "Acceptance of Extraneous Untrusted Data With Trusted Data"
},
"discovery_date": "2025-07-16T15:01:36.497027+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380949"
}
],
"notes": [
{
"category": "description",
"text": "A cache poisoning flaw was found in Unbound. Resolvers supporting EDNS Client Subnet (ECS) must segregate outgoing queries to accommodate different outgoing ECS information. This issue reopens resolvers to a birthday paradox attack, known as the Rebirthday Attack, which attempts to match the DNS transaction ID with cache non-ECS poisoned replies.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: Unbound Cache poisoning",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is considered Important rather than Moderate because it directly compromises the integrity of DNS caching mechanisms in resolvers supporting EDNS Client Subnet (ECS). The flaw allows an attacker to exploit the birthday paradox by generating a high volume of concurrent queries with different ECS values, thereby increasing the chance of a transaction ID collision with a spoofed response. If the resolver fails to properly segregate cache entries by ECS scope, it may accept and cache a malicious non-ECS response, effectively leading to DNS cache poisoning. Unlike typical poisoning attempts that require precise timing or privileged network positions, this attack can be carried out remotely with a high success rate, especially in resolvers that do not correctly isolate ECS queries.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.14"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5994"
},
{
"category": "external",
"summary": "RHBZ#2380949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5994"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5994",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5994"
},
{
"category": "external",
"summary": "https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt",
"url": "https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt"
}
],
"release_date": "2025-07-16T14:38:22.738000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-30T05:41:47+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.14"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:19041"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.14"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.14"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "unbound: Unbound Cache poisoning"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.14"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-30T05:41:47+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.14"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:19041"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.14"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.14"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Paul Holzinger"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2025-9566",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-09-04T15:45:46.448000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2393152"
}
],
"notes": [
{
"category": "description",
"text": "There\u0027s a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file.\n\nBinary-Affected: podman\nUpstream-version-introduced: v4.0.0\nUpstream-version-fixed: v5.6.1",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "podman: Podman kube play command may overwrite host files",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having the Important severity. This happens because of the consequences of an successful attack and the low complexity (AC:L) on exploiting this vulnerability. Although the attacker cannot control the content written to the target file, depending on which file was targeted, the exploitation of this flaw may lead sensitive data corruption (I:H) and leading the system to crash resulting in a Denial of Service attack (A:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.14"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-9566"
},
{
"category": "external",
"summary": "RHBZ#2393152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-9566",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9566"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-9566",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-9566"
}
],
"release_date": "2025-09-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-30T05:41:47+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.14"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:19041"
},
{
"category": "workaround",
"details": "Red Hat advises to not run the podman kube play command with untrusted Kubernetes YAML file as input, additionally review the Kubernetes YAML file before running it through podman may help to catch maliciously crafted secretes or volumes that may be used to exploit this vulnerability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.14"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.14"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "podman: Podman kube play command may overwrite host files"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.14"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-30T05:41:47+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.14"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:19041"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.14"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.14"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.14"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-30T05:41:47+00:00",
"details": "For OpenShift Container Platform 4.14 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.14 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.14/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.14"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:19041"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.14"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.14"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:12905
Vulnerability from csaf_redhat
Published
2025-08-05 06:51
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: sqlite security update
Notes
Topic
An update for sqlite is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for sqlite is now available for Red Hat Enterprise Linux 8.4 Advanced Mission Critical Update Support and Red Hat Enterprise Linux 8.4 Extended Update Support Long-Life Add-On.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:12905",
"url": "https://access.redhat.com/errata/RHSA-2025:12905"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_12905.json"
}
],
"title": "Red Hat Security Advisory: sqlite security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:52+00:00",
"generator": {
"date": "2025-10-30T06:43:52+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:12905",
"initial_release_date": "2025-08-05T06:51:48+00:00",
"revision_history": [
{
"date": "2025-08-05T06:51:48+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-05T06:51:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:52+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_aus:8.4::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:8.4::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus_long_life:8.4::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus_long_life:8.4::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "lemon-0:3.26.0-13.el8_4.1.x86_64",
"product": {
"name": "lemon-0:3.26.0-13.el8_4.1.x86_64",
"product_id": "lemon-0:3.26.0-13.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.26.0-13.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"product": {
"name": "sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"product_id": "sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-13.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product": {
"name": "lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product_id": "lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-13.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-13.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product_id": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-13.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-13.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-13.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.26.0-13.el8_4.1.x86_64",
"product": {
"name": "sqlite-0:3.26.0-13.el8_4.1.x86_64",
"product_id": "sqlite-0:3.26.0-13.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-13.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"product": {
"name": "sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"product_id": "sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-13.el8_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"product": {
"name": "sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"product_id": "sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-13.el8_4.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-13.el8_4.1.src",
"product": {
"name": "sqlite-0:3.26.0-13.el8_4.1.src",
"product_id": "sqlite-0:3.26.0-13.el8_4.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-13.el8_4.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-13.el8_4.1.i686",
"product": {
"name": "sqlite-0:3.26.0-13.el8_4.1.i686",
"product_id": "sqlite-0:3.26.0-13.el8_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-13.el8_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"product": {
"name": "sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"product_id": "sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-13.el8_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"product": {
"name": "sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"product_id": "sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-13.el8_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"product": {
"name": "sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"product_id": "sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-13.el8_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product": {
"name": "lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product_id": "lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-13.el8_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-13.el8_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product_id": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-13.el8_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-13.el8_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-13.el8_4.1?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"product": {
"name": "sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"product_id": "sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-doc@3.26.0-13.el8_4.1?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:lemon-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "lemon-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-13.el8_4.1.src as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.src"
},
"product_reference": "sqlite-0:3.26.0-13.el8_4.1.src",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-13.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-doc-0:3.26.0-13.el8_4.1.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.4)",
"product_id": "AppStream-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:lemon-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "lemon-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-13.el8_4.1.src as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.src"
},
"product_reference": "sqlite-0:3.26.0-13.el8_4.1.src",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-13.el8_4.1.noarch as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-doc-0:3.26.0-13.el8_4.1.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS EXTENSION (v.8.4)",
"product_id": "AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "AppStream-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:lemon-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "lemon-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-13.el8_4.1.src as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.src"
},
"product_reference": "sqlite-0:3.26.0-13.el8_4.1.src",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-13.el8_4.1.noarch as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-doc-0:3.26.0-13.el8_4.1.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "lemon-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-13.el8_4.1.src as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.src"
},
"product_reference": "sqlite-0:3.26.0-13.el8_4.1.src",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-13.el8_4.1.noarch as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-doc-0:3.26.0-13.el8_4.1.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS EXTENSION (v.8.4)",
"product_id": "BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"relates_to_product_reference": "BaseOS-8.4.0.Z.EUS.EXTENSION"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.4.0.Z.AUS:lemon-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.src",
"AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:lemon-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:lemon-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.src",
"BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-05T06:51:48+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.4.0.Z.AUS:lemon-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.src",
"AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:lemon-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:lemon-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.src",
"BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:12905"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.4.0.Z.AUS:lemon-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.src",
"AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:lemon-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:lemon-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.src",
"BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.4.0.Z.AUS:lemon-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.src",
"AppStream-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"AppStream-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:lemon-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.src",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"AppStream-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:lemon-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.src",
"BaseOS-8.4.0.Z.AUS:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:lemon-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.src",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-analyzer-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-debugsource-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-devel-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-doc-0:3.26.0-13.el8_4.1.noarch",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-libs-debuginfo-0:3.26.0-13.el8_4.1.x86_64",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.i686",
"BaseOS-8.4.0.Z.EUS.EXTENSION:sqlite-tcl-debuginfo-0:3.26.0-13.el8_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:13267
Vulnerability from csaf_redhat
Published
2025-08-06 15:26
Modified
2025-10-30 05:42
Summary
Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage
Notes
Topic
A Subscription Management tool for finding and reporting Red Hat product usage
Details
Red Hat Discovery, also known as Discovery, is an inspection and reporting tool that finds, identifies, and reports environment data, or facts, such as the number of physical and virtual systems on a network, their operating systems, and relevant configuration data stored within them. Discovery also identifies and reports more detailed facts for some versions of key Red Hat packages and products that it finds in the network.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "A Subscription Management tool for finding and reporting Red Hat product usage",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat Discovery, also known as Discovery, is an inspection and reporting tool that finds, identifies, and reports environment data, or facts, such as the number of physical and virtual systems on a network, their operating systems, and relevant configuration data stored within them. Discovery also identifies and reports more detailed facts for some versions of key Red Hat packages and products that it finds in the network.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:13267",
"url": "https://access.redhat.com/errata/RHSA-2025:13267"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-12718",
"url": "https://access.redhat.com/security/cve/CVE-2024-12718"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-40909",
"url": "https://access.redhat.com/security/cve/CVE-2025-40909"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-4138",
"url": "https://access.redhat.com/security/cve/CVE-2025-4138"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-4330",
"url": "https://access.redhat.com/security/cve/CVE-2025-4330"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-4435",
"url": "https://access.redhat.com/security/cve/CVE-2025-4435"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-4517",
"url": "https://access.redhat.com/security/cve/CVE-2025-4517"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-49796",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-6021",
"url": "https://access.redhat.com/security/cve/CVE-2025-6021"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-6965",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-7425",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.redhat.com/en/documentation/subscription_central/1-latest/#Discovery",
"url": "https://docs.redhat.com/en/documentation/subscription_central/1-latest/#Discovery"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_13267.json"
}
],
"title": "Red Hat Security Advisory: A Subscription Management tool for finding and reporting Red Hat product usage",
"tracking": {
"current_release_date": "2025-10-30T05:42:44+00:00",
"generator": {
"date": "2025-10-30T05:42:44+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:13267",
"initial_release_date": "2025-08-06T15:26:03+00:00",
"revision_history": [
{
"date": "2025-08-06T15:26:03+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-06T15:26:13+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T05:42:44+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Discovery 2",
"product": {
"name": "Red Hat Discovery 2",
"product_id": "Red Hat Discovery 2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:discovery:2::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Discovery"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"product": {
"name": "registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"product_id": "registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-server-rhel9@sha256%3Aad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344?arch=amd64\u0026repository_url=registry.redhat.io/discovery\u0026tag=2.0.1-1754478727"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"product": {
"name": "registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"product_id": "registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-ui-rhel9@sha256%3A18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413?arch=amd64\u0026repository_url=registry.redhat.io/discovery\u0026tag=2.0.1-1754485705"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"product": {
"name": "registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"product_id": "registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-server-rhel9@sha256%3Ac517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec?arch=arm64\u0026repository_url=registry.redhat.io/discovery\u0026tag=2.0.1-1754478727"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64",
"product": {
"name": "registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64",
"product_id": "registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64",
"product_identification_helper": {
"purl": "pkg:oci/discovery-ui-rhel9@sha256%3A2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc?arch=arm64\u0026repository_url=registry.redhat.io/discovery\u0026tag=2.0.1-1754485705"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64 as a component of Red Hat Discovery 2",
"product_id": "Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64"
},
"product_reference": "registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"relates_to_product_reference": "Red Hat Discovery 2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64 as a component of Red Hat Discovery 2",
"product_id": "Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
},
"product_reference": "registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"relates_to_product_reference": "Red Hat Discovery 2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64 as a component of Red Hat Discovery 2",
"product_id": "Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64"
},
"product_reference": "registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"relates_to_product_reference": "Red Hat Discovery 2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64 as a component of Red Hat Discovery 2",
"product_id": "Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
},
"product_reference": "registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64",
"relates_to_product_reference": "Red Hat Discovery 2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-12718",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-03T14:00:57.613538+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370013"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in CPython\u0027s tarfile module. This vulnerability allows modification of file metadata, such as timestamps or permissions, outside the intended extraction directory via maliciously crafted tar archives using the filter=\"data\" or filter=\"tar\" extraction filters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cpython: python: Bypass extraction filter to modify file metadata outside extraction directory",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this vulnerability was lowered due to the fact that successful exploitation requires the attacker to convince a privileged user or process to extract a malicious tar file. Since tar file extraction typically occurs in trusted contexts or with elevated privileges, the impact is reduced by the requirement of such access.\n\nVersions of python36:3.6/python36 as shipped with Red Hat Enterprise Linux 8 are marked as \u0027Not affected\u0027 as they just provide \"symlinks\" to the main python3 component, which provides the actual interpreter of the Python programming language.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"known_not_affected": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-12718"
},
{
"category": "external",
"summary": "RHBZ#2370013",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370013"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-12718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12718"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-12718",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-12718"
},
{
"category": "external",
"summary": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f",
"url": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a",
"url": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a",
"url": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/127987",
"url": "https://github.com/python/cpython/issues/127987"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/135034",
"url": "https://github.com/python/cpython/issues/135034"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/135037",
"url": "https://github.com/python/cpython/pull/135037"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"
}
],
"release_date": "2025-06-03T12:59:10.908000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-06T15:26:03+00:00",
"details": "The containers required to run Discovery can be installed through discovery-installer RPM. See the official documentation for more details.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13267"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "cpython: python: Bypass extraction filter to modify file metadata outside extraction directory"
},
{
"cve": "CVE-2025-4138",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-12T09:03:58.434950+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372426"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Python tarfile module. This vulnerability allows attackers to bypass extraction filters, enabling symlink targets to escape the destination directory and allowing unauthorized modification of file metadata via the use of TarFile.extract() or TarFile.extractall() with the filter= parameter set to \"data\" or \"tar\".",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Versions of python36:3.6/python36 as shipped with Red Hat Enterprise Linux 8 are marked as \u0027Not affected\u0027 as they just provide \"symlinks\" to the main python3 component, which provides the actual interpreter of the Python programming language.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"known_not_affected": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4138"
},
{
"category": "external",
"summary": "RHBZ#2372426",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372426"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4138"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4138",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4138"
},
{
"category": "external",
"summary": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f",
"url": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a",
"url": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a",
"url": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/135034",
"url": "https://github.com/python/cpython/issues/135034"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/135037",
"url": "https://github.com/python/cpython/pull/135037"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"
}
],
"release_date": "2025-06-03T12:59:02.717000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-06T15:26:03+00:00",
"details": "The containers required to run Discovery can be installed through discovery-installer RPM. See the official documentation for more details.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13267"
},
{
"category": "workaround",
"details": "Red Hat recommends upgrading to a fixed release of Python as soon as one is available. This vulnerability can be mitigated by rejecting links inside tarfiles that use relative references to the parent directory. The upstream advisory provides this example code:\n\n\u0027\u0027\u0027\n# Avoid insecure segments in link names.\nfor member in tar.getmembers():\n if not member.islnk():\n continue\n if os.pardir in os.path.split(member.linkname):\n raise OSError(\"Tarfile with insecure segment (\u0027..\u0027) in linkname\")\n\n# Now safe to extract members with the data filter.\ntar.extractall(filter=\"data\")\n\u0027\u0027\u0027",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory"
},
{
"cve": "CVE-2025-4330",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-03T14:01:00.653313+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370014"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in CPython\u0027s tarfile module. This vulnerability allows bypassing of extraction filters, enabling symlink traversal outside the intended extraction directory and potential modification of file metadata via malicious tar archives using TarFile.extractall() or TarFile.extract() with the filter=\"data\" or filter=\"tar\" parameters. This issue leads to potentially overwriting or modifying system files and metadata.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cpython: python: Extraction filter bypass for linking outside extraction directory",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this vulnerability was lowered due to the fact that successful exploitation requires the attacker to convince a privileged user or process to extract a malicious tar file. Since tar file extraction typically occurs in trusted contexts or with elevated privileges, the impact is reduced by the requirement of this access.\n\nVersions of python36:3.6/python36 as shipped with Red Hat Enterprise Linux 8 are marked as \u0027Not affected\u0027 as they just provide \"symlinks\" to the main python3 component, which provides the actual interpreter of the Python programming language.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-22: Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nInput validation enforces strict path constraints, rejecting directory traversal attempts or unauthorized file access. Runtime environments restrict code execution to predefined privilege levels, preventing escalation from traversal exploits. Configuration settings limit accessible directories and enforce execution boundaries to reduce the influence of user input on file system behavior. Application components are developed and validated against secure coding standards that explicitly prevent path manipulation, further minimizing exploitation risk.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"known_not_affected": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4330"
},
{
"category": "external",
"summary": "RHBZ#2370014",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370014"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4330",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4330"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4330",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4330"
},
{
"category": "external",
"summary": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f",
"url": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a",
"url": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a",
"url": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/135034",
"url": "https://github.com/python/cpython/issues/135034"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/135037",
"url": "https://github.com/python/cpython/pull/135037"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"
}
],
"release_date": "2025-06-03T12:58:57.452000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-06T15:26:03+00:00",
"details": "The containers required to run Discovery can be installed through discovery-installer RPM. See the official documentation for more details.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13267"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "cpython: python: Extraction filter bypass for linking outside extraction directory"
},
{
"cve": "CVE-2025-4435",
"cwe": {
"id": "CWE-706",
"name": "Use of Incorrectly-Resolved Name or Reference"
},
"discovery_date": "2025-06-03T14:00:46.485917+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370010"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in CPython\u0027s tarfile module. This vulnerability allows unauthorized file extraction via crafted tar archives when TarFile.errorlevel=0, bypassing expected filtering mechanisms.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cpython: Tarfile extracts filtered members when errorlevel=0",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this vulnerability was lowered due to the fact that successful exploitation requires the attacker to convince a privileged user or process to extract a malicious tar file. Since tar file extraction typically occurs in trusted contexts or with elevated privileges, the impact is reduced by the requirement of such access.\n\nVersions of python36:3.6/python36 as shipped with Red Hat Enterprise Linux 8 are marked as \u0027Not affected\u0027 as they just provide \"symlinks\" to the main python3 component, which provides the actual interpreter of the Python programming language.\n\nWithin regulated environments, a combination of the following controls acts as a significant barrier to successful exploitation of a CWE-706: Use of Incorrectly-Resolved Name or Reference and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nAccess enforcement and least privilege limit resolution of internal objects and services to explicitly authorized users and processes, reducing the risk of unintended interactions.. Configuration settings are tightly managed to ensure consistent and accurate resolution of names, paths, and references across deployments. Least functionality reduces exposure by disabling unused features and restricting access to unnecessary components. Additionally, real-time monitoring detects anomalous behavior or access attempts involving misconfigured or invalid references, enabling timely response and containment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"known_not_affected": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4435"
},
{
"category": "external",
"summary": "RHBZ#2370010",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370010"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4435",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4435"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4435",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4435"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a",
"url": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a",
"url": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/135034",
"url": "https://github.com/python/cpython/issues/135034"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/135037",
"url": "https://github.com/python/cpython/pull/135037"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"
}
],
"release_date": "2025-06-03T12:59:06.792000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-06T15:26:03+00:00",
"details": "The containers required to run Discovery can be installed through discovery-installer RPM. See the official documentation for more details.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13267"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "cpython: Tarfile extracts filtered members when errorlevel=0"
},
{
"cve": "CVE-2025-4517",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-03T14:01:12.271192+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370016"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the CPython tarfile module. This vulnerability allows arbitrary filesystem writes outside the extraction directory via extracting untrusted tar archives using the TarFile.extractall() or TarFile.extract() methods with the extraction filter parameter set to \"data\" or \"tar\".",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python: cpython: Arbitrary writes via tarfile realpath overflow",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this vulnerability was lowered due to the fact that successful exploitation requires the attacker to convince a privileged user or process to extract a malicious tar file. Since tar file extraction typically occurs in trusted contexts or with elevated privileges, the impact is reduced by the requirement of such access.\n\nVersions of python36:3.6/python36 as shipped with Red Hat Enterprise Linux 8 are marked as \u0027Not affected\u0027 as they just provide \"symlinks\" to the main python3 component, which provides the actual interpreter of the Python programming language.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"known_not_affected": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4517"
},
{
"category": "external",
"summary": "RHBZ#2370016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370016"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4517",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4517"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4517",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4517"
},
{
"category": "external",
"summary": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f",
"url": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a",
"url": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a",
"url": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/135034",
"url": "https://github.com/python/cpython/issues/135034"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/135037",
"url": "https://github.com/python/cpython/pull/135037"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"
}
],
"release_date": "2025-06-03T12:58:50.352000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-06T15:26:03+00:00",
"details": "The containers required to run Discovery can be installed through discovery-installer RPM. See the official documentation for more details.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13267"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "python: cpython: Arbitrary writes via tarfile realpath overflow"
},
{
"acknowledgments": [
{
"names": [
"Ahmed Lekssays"
]
}
],
"cve": "CVE-2025-6021",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2025-06-12T07:55:45.428000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372406"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxml2\u0027s xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate due to the lack of confidentiality impact and limited integrity concerns, with the main risk being potential denial-of-service from a crash. Exploitation requires crafted XML input and specific application behavior using xmlBuildQName. While it\u2019s a write overflow, modern mitigations make remote code execution unlikely.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"known_not_affected": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6021"
},
{
"category": "external",
"summary": "RHBZ#2372406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372406"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021"
}
],
"release_date": "2025-06-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-06T15:26:03+00:00",
"details": "The containers required to run Discovery can be installed through discovery-installer RPM. See the official documentation for more details.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13267"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability. Users are strongly advised to apply vendor-supplied patches as soon as they become available to address the underlying integer overflow flaw in the affected code.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"known_not_affected": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-06T15:26:03+00:00",
"details": "The containers required to run Discovery can be installed through discovery-installer RPM. See the official documentation for more details.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13267"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"known_not_affected": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-06T15:26:03+00:00",
"details": "The containers required to run Discovery can be installed through discovery-installer RPM. See the official documentation for more details.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13267"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-40909",
"cwe": {
"id": "CWE-426",
"name": "Untrusted Search Path"
},
"discovery_date": "2025-05-30T13:00:49.546076+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2369407"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Perl standard library threads component. This vulnerability can allow a local attacker to exploit a race condition in directory handling to access files or load code from unexpected locations.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "perl: Perl threads have a working directory race condition where file operations may target unintended paths",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization (\u0027Race Condition\u0027) or CWE-426: Untrusted Search Path vulnerability, and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nRed Hat enforces least functionality by enabling only essential features, services, and ports to reduce the system\u2019s attack surface. Static code analysis, peer reviews, and robust input validation and error handling detect unsafe input that could affect execution timing or path resolution. Real-time threat detection, including IPS/IDS, antimalware, and continuous system monitoring, enables rapid identification of exploitation attempts. Process isolation reduces the likelihood of concurrent execution conflicts and contains any impact to isolated workloads. Executable search paths are restricted to trusted, explicitly defined directories, mitigating the risk of executing malicious files. These controls effectively lower the likelihood and impact of race conditions and untrusted path exploitation in the environment.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"known_not_affected": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-40909"
},
{
"category": "external",
"summary": "RHBZ#2369407",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2369407"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-40909",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40909"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-40909",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-40909"
},
{
"category": "external",
"summary": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098226",
"url": "https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1098226"
},
{
"category": "external",
"summary": "https://github.com/Perl/perl5/commit/11a11ecf4bea72b17d250cfb43c897be1341861e",
"url": "https://github.com/Perl/perl5/commit/11a11ecf4bea72b17d250cfb43c897be1341861e"
},
{
"category": "external",
"summary": "https://github.com/Perl/perl5/commit/918bfff86ca8d6d4e4ec5b30994451e0bd74aba9.patch",
"url": "https://github.com/Perl/perl5/commit/918bfff86ca8d6d4e4ec5b30994451e0bd74aba9.patch"
},
{
"category": "external",
"summary": "https://github.com/Perl/perl5/issues/10387",
"url": "https://github.com/Perl/perl5/issues/10387"
},
{
"category": "external",
"summary": "https://github.com/Perl/perl5/issues/23010",
"url": "https://github.com/Perl/perl5/issues/23010"
},
{
"category": "external",
"summary": "https://perldoc.perl.org/5.14.0/perl5136delta#Directory-handles-not-copied-to-threads",
"url": "https://perldoc.perl.org/5.14.0/perl5136delta#Directory-handles-not-copied-to-threads"
},
{
"category": "external",
"summary": "https://www.openwall.com/lists/oss-security/2025/05/22/2",
"url": "https://www.openwall.com/lists/oss-security/2025/05/22/2"
}
],
"release_date": "2025-05-30T12:20:11.237000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-06T15:26:03+00:00",
"details": "The containers required to run Discovery can be installed through discovery-installer RPM. See the official documentation for more details.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13267"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "perl: Perl threads have a working directory race condition where file operations may target unintended paths"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"known_not_affected": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-06T15:26:03+00:00",
"details": "The containers required to run Discovery can be installed through discovery-installer RPM. See the official documentation for more details.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13267"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:ad07f55ee75fb20310c88f154a04665bd8465d138d66c665c300f61447858344_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-server-rhel9@sha256:c517869dacaf4d3650310d4a52e83706e0b311d6ebb4a9b37b1c7acff5c142ec_arm64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:18fa5a5b82d77afe7a92e0115daf8c23df0f817d5917747d35212dc7e4c66413_amd64",
"Red Hat Discovery 2:registry.redhat.io/discovery/discovery-ui-rhel9@sha256:2020475c1f39087c770ff031c3a4c0b384aa680b1b9a8278ad80d127420ffffc_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:11933
Vulnerability from csaf_redhat
Published
2025-07-28 14:46
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: sqlite security update
Notes
Topic
An update for sqlite is now available for Red Hat Enterprise Linux 10.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for sqlite is now available for Red Hat Enterprise Linux 10.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11933",
"url": "https://access.redhat.com/errata/RHSA-2025:11933"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11933.json"
}
],
"title": "Red Hat Security Advisory: sqlite security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:49+00:00",
"generator": {
"date": "2025-10-30T06:43:49+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:11933",
"initial_release_date": "2025-07-28T14:46:09+00:00",
"revision_history": [
{
"date": "2025-07-28T14:46:09+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-28T14:46:09+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:49+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10.0"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 10)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:10.0"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.46.1-5.el10_0.src",
"product": {
"name": "sqlite-0:3.46.1-5.el10_0.src",
"product_id": "sqlite-0:3.46.1-5.el10_0.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.46.1-5.el10_0?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"product": {
"name": "sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"product_id": "sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.46.1-5.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"product": {
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"product_id": "sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.46.1-5.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product": {
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product_id": "lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.46.1-5.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product_id": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.46.1-5.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product": {
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product_id": "sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.46.1-5.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product_id": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.46.1-5.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product_id": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.46.1-5.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product": {
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product_id": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.46.1-5.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.46.1-5.el10_0.aarch64",
"product": {
"name": "sqlite-0:3.46.1-5.el10_0.aarch64",
"product_id": "sqlite-0:3.46.1-5.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.46.1-5.el10_0?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"product": {
"name": "sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"product_id": "sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.46.1-5.el10_0?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"product": {
"name": "sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"product_id": "sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.46.1-5.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"product": {
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"product_id": "sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.46.1-5.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product": {
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product_id": "lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.46.1-5.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product_id": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.46.1-5.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product": {
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product_id": "sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.46.1-5.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product": {
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product_id": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.46.1-5.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product_id": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.46.1-5.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product": {
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product_id": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.46.1-5.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.46.1-5.el10_0.ppc64le",
"product": {
"name": "sqlite-0:3.46.1-5.el10_0.ppc64le",
"product_id": "sqlite-0:3.46.1-5.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.46.1-5.el10_0?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"product": {
"name": "sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"product_id": "sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.46.1-5.el10_0?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"product": {
"name": "sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"product_id": "sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.46.1-5.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"product": {
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"product_id": "sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.46.1-5.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product": {
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product_id": "lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.46.1-5.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product_id": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.46.1-5.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product": {
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product_id": "sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.46.1-5.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product_id": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.46.1-5.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product_id": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.46.1-5.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product": {
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product_id": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.46.1-5.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.46.1-5.el10_0.x86_64",
"product": {
"name": "sqlite-0:3.46.1-5.el10_0.x86_64",
"product_id": "sqlite-0:3.46.1-5.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.46.1-5.el10_0?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"product": {
"name": "sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"product_id": "sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.46.1-5.el10_0?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.46.1-5.el10_0.s390x",
"product": {
"name": "sqlite-libs-0:3.46.1-5.el10_0.s390x",
"product_id": "sqlite-libs-0:3.46.1-5.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.46.1-5.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"product": {
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"product_id": "sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.46.1-5.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"product": {
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"product_id": "lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.46.1-5.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"product_id": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.46.1-5.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"product": {
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"product_id": "sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.46.1-5.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"product": {
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"product_id": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.46.1-5.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"product_id": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.46.1-5.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"product": {
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"product_id": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.46.1-5.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.46.1-5.el10_0.s390x",
"product": {
"name": "sqlite-0:3.46.1-5.el10_0.s390x",
"product_id": "sqlite-0:3.46.1-5.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.46.1-5.el10_0?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.46.1-5.el10_0.s390x",
"product": {
"name": "sqlite-devel-0:3.46.1-5.el10_0.s390x",
"product_id": "sqlite-devel-0:3.46.1-5.el10_0.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.46.1-5.el10_0?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.46.1-5.el10_0.src as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.src"
},
"product_reference": "sqlite-0:3.46.1-5.el10_0.src",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-devel-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-libs-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 10)",
"product_id": "AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "AppStream-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.46.1-5.el10_0.src as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.src"
},
"product_reference": "sqlite-0:3.46.1-5.el10_0.src",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-devel-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-libs-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le"
},
"product_reference": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x"
},
"product_reference": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"relates_to_product_reference": "BaseOS-10.0.Z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 10)",
"product_id": "BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64",
"relates_to_product_reference": "BaseOS-10.0.Z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.src",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.src",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-28T14:46:09+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.src",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.src",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11933"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.src",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.src",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.src",
"AppStream-10.0.Z:sqlite-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"AppStream-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:lemon-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.src",
"BaseOS-10.0.Z:sqlite-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-analyzer-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-debugsource-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-devel-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-libs-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-libs-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-tcl-debuginfo-0:3.46.1-5.el10_0.x86_64",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.aarch64",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.ppc64le",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.s390x",
"BaseOS-10.0.Z:sqlite-tools-debuginfo-0:3.46.1-5.el10_0.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:12904
Vulnerability from csaf_redhat
Published
2025-08-05 07:29
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: sqlite security update
Notes
Topic
An update for sqlite is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for sqlite is now available for Red Hat Enterprise Linux 8.6 Advanced Mission Critical Update Support, Red Hat Enterprise Linux 8.6 Update Services for SAP Solutions, and Red Hat Enterprise Linux 8.6 Telecommunications Update Service.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:12904",
"url": "https://access.redhat.com/errata/RHSA-2025:12904"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_12904.json"
}
],
"title": "Red Hat Security Advisory: sqlite security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:52+00:00",
"generator": {
"date": "2025-10-30T06:43:52+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:12904",
"initial_release_date": "2025-08-05T07:29:23+00:00",
"revision_history": [
{
"date": "2025-08-05T07:29:23+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-05T07:29:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:52+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_aus:8.6::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:8.6::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:8.6::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:8.6::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_tus:8.6::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:8.6::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "lemon-0:3.26.0-16.el8_6.3.x86_64",
"product": {
"name": "lemon-0:3.26.0-16.el8_6.3.x86_64",
"product_id": "lemon-0:3.26.0-16.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.26.0-16.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"product": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"product_id": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-16.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product_id": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-16.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-16.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product_id": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-16.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-16.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-16.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.26.0-16.el8_6.3.x86_64",
"product": {
"name": "sqlite-0:3.26.0-16.el8_6.3.x86_64",
"product_id": "sqlite-0:3.26.0-16.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-16.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"product": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"product_id": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-16.el8_6.3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"product": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"product_id": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-16.el8_6.3?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-16.el8_6.3.src",
"product": {
"name": "sqlite-0:3.26.0-16.el8_6.3.src",
"product_id": "sqlite-0:3.26.0-16.el8_6.3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-16.el8_6.3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-16.el8_6.3.i686",
"product": {
"name": "sqlite-0:3.26.0-16.el8_6.3.i686",
"product_id": "sqlite-0:3.26.0-16.el8_6.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-16.el8_6.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"product": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"product_id": "sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-16.el8_6.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"product": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"product_id": "sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-16.el8_6.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"product": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"product_id": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-16.el8_6.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product_id": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-16.el8_6.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-16.el8_6.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product_id": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-16.el8_6.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-16.el8_6.3?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-16.el8_6.3?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"product": {
"name": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"product_id": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-doc@3.26.0-16.el8_6.3?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-16.el8_6.3.aarch64",
"product": {
"name": "sqlite-0:3.26.0-16.el8_6.3.aarch64",
"product_id": "sqlite-0:3.26.0-16.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-16.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"product": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"product_id": "sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-16.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"product": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"product_id": "sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-16.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"product": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"product_id": "sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-16.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product_id": "lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-16.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-16.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product_id": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-16.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-16.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-16.el8_6.3?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "lemon-0:3.26.0-16.el8_6.3.aarch64",
"product": {
"name": "lemon-0:3.26.0-16.el8_6.3.aarch64",
"product_id": "lemon-0:3.26.0-16.el8_6.3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.26.0-16.el8_6.3?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"product": {
"name": "sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"product_id": "sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-16.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"product": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"product_id": "sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-16.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"product": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"product_id": "sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-16.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"product": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"product_id": "sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-16.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product_id": "lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-16.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-16.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product_id": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-16.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-16.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-16.el8_6.3?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "lemon-0:3.26.0-16.el8_6.3.ppc64le",
"product": {
"name": "lemon-0:3.26.0-16.el8_6.3.ppc64le",
"product_id": "lemon-0:3.26.0-16.el8_6.3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.26.0-16.el8_6.3?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-16.el8_6.3.s390x",
"product": {
"name": "sqlite-0:3.26.0-16.el8_6.3.s390x",
"product_id": "sqlite-0:3.26.0-16.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-16.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"product": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"product_id": "sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-16.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"product": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"product_id": "sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-16.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"product": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"product_id": "sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-16.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product_id": "lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-16.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-16.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product_id": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-16.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-16.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-16.el8_6.3?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "lemon-0:3.26.0-16.el8_6.3.s390x",
"product": {
"name": "lemon-0:3.26.0-16.el8_6.3.s390x",
"product_id": "lemon-0:3.26.0-16.el8_6.3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.26.0-16.el8_6.3?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:lemon-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "lemon-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.src as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.src"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.src",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "lemon-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "lemon-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "lemon-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "lemon-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.src as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.src"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.src",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-doc-0:3.26.0-16.el8_6.3.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.6)",
"product_id": "AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:lemon-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "lemon-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.src as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.src"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.src",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.6)",
"product_id": "AppStream-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "AppStream-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:lemon-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "lemon-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.src as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.src"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.src",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "lemon-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "lemon-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "lemon-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "lemon-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.src as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.src"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.src",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-doc-0:3.26.0-16.el8_6.3.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:lemon-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "lemon-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.src as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.src"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.src",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.6)",
"product_id": "BaseOS-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"relates_to_product_reference": "BaseOS-8.6.0.Z.TUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.6.0.Z.AUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.src",
"AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"AppStream-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.src",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.src",
"AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"AppStream-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.src",
"BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.src",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.src",
"BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-05T07:29:23+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.6.0.Z.AUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.src",
"AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"AppStream-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.src",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.src",
"AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"AppStream-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.src",
"BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.src",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.src",
"BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:12904"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.6.0.Z.AUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.src",
"AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"AppStream-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.src",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.src",
"AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"AppStream-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.src",
"BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.src",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.src",
"BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.6.0.Z.AUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.src",
"AppStream-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"AppStream-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.src",
"AppStream-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"AppStream-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.src",
"AppStream-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"AppStream-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"AppStream-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"AppStream-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.src",
"BaseOS-8.6.0.Z.AUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:lemon-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.src",
"BaseOS-8.6.0.Z.E4S:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.aarch64",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.ppc64le",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.s390x",
"BaseOS-8.6.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:lemon-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:lemon-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.src",
"BaseOS-8.6.0.Z.TUS:sqlite-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-debugsource-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-devel-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-doc-0:3.26.0-16.el8_6.3.noarch",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-16.el8_6.3.x86_64",
"BaseOS-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.i686",
"BaseOS-8.6.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-16.el8_6.3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:19046
Vulnerability from csaf_redhat
Published
2025-10-29 09:26
Modified
2025-10-30 06:44
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.18.27 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.18.27 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.18.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container Platform 4.18.27. See the following advisory for the RPM packages for this release:
https://access.redhat.com/errata/155476
Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/
Security Fix(es):
* libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c (CVE-2025-5914)
* unbound: Unbound Cache poisoning (CVE-2025-5994)
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
* podman: Podman kube play command may overwrite host files (CVE-2025-9566)
* libxml: Heap use after free (UAF) leads to Denial of service (DoS) (CVE-2025-49794)
* libxml: Type confusion leads to Denial of service (DoS) (CVE-2025-49796)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.18 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc)
or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html-single/updating_clusters/index#updating-cluster-cli.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.18.27 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.18.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container Platform 4.18.27. See the following advisory for the RPM packages for this release:\n\nhttps://access.redhat.com/errata/155476\n\nSpace precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/\n\nSecurity Fix(es):\n\n* libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c (CVE-2025-5914)\n* unbound: Unbound Cache poisoning (CVE-2025-5994)\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n* podman: Podman kube play command may overwrite host files (CVE-2025-9566)\n* libxml: Heap use after free (UAF) leads to Denial of service (DoS) (CVE-2025-49794)\n* libxml: Type confusion leads to Denial of service (DoS) (CVE-2025-49796)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.18 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:19046",
"url": "https://access.redhat.com/errata/RHSA-2025:19046"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "2380949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380949"
},
{
"category": "external",
"summary": "2393152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393152"
},
{
"category": "external",
"summary": "OCPBUGS-62810",
"url": "https://issues.redhat.com/browse/OCPBUGS-62810"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_19046.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.18.27 bug fix and security update",
"tracking": {
"current_release_date": "2025-10-30T06:44:08+00:00",
"generator": {
"date": "2025-10-30T06:44:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:19046",
"initial_release_date": "2025-10-29T09:26:54+00:00",
"revision_history": [
{
"date": "2025-10-29T09:26:54+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-10-29T09:26:54+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:44:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.18",
"product": {
"name": "Red Hat OpenShift Container Platform 4.18",
"product_id": "Red Hat OpenShift Container Platform 4.18",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.18::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-5914",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2025-06-06T17:58:25.491000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370861"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as Important because it allows a local attacker with limited privileges to trigger a double-free in libarchive\u0027s RAR parser by providing a specially crafted RAR archive. Successful exploitation could result in code execution or application crashes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.18"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5914"
},
{
"category": "external",
"summary": "RHBZ#2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2598",
"url": "https://github.com/libarchive/libarchive/pull/2598"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0",
"url": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0"
}
],
"release_date": "2025-05-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-29T09:26:54+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.18 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.18"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:19046"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.18"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c"
},
{
"cve": "CVE-2025-5994",
"cwe": {
"id": "CWE-349",
"name": "Acceptance of Extraneous Untrusted Data With Trusted Data"
},
"discovery_date": "2025-07-16T15:01:36.497027+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380949"
}
],
"notes": [
{
"category": "description",
"text": "A cache poisoning flaw was found in Unbound. Resolvers supporting EDNS Client Subnet (ECS) must segregate outgoing queries to accommodate different outgoing ECS information. This issue reopens resolvers to a birthday paradox attack, known as the Rebirthday Attack, which attempts to match the DNS transaction ID with cache non-ECS poisoned replies.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: Unbound Cache poisoning",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is considered Important rather than Moderate because it directly compromises the integrity of DNS caching mechanisms in resolvers supporting EDNS Client Subnet (ECS). The flaw allows an attacker to exploit the birthday paradox by generating a high volume of concurrent queries with different ECS values, thereby increasing the chance of a transaction ID collision with a spoofed response. If the resolver fails to properly segregate cache entries by ECS scope, it may accept and cache a malicious non-ECS response, effectively leading to DNS cache poisoning. Unlike typical poisoning attempts that require precise timing or privileged network positions, this attack can be carried out remotely with a high success rate, especially in resolvers that do not correctly isolate ECS queries.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.18"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5994"
},
{
"category": "external",
"summary": "RHBZ#2380949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5994"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5994",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5994"
},
{
"category": "external",
"summary": "https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt",
"url": "https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt"
}
],
"release_date": "2025-07-16T14:38:22.738000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-29T09:26:54+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.18 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.18"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:19046"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.18"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.18"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "unbound: Unbound Cache poisoning"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.18"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-29T09:26:54+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.18 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.18"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:19046"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.18"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.18"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Paul Holzinger"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2025-9566",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-09-04T15:45:46.448000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2393152"
}
],
"notes": [
{
"category": "description",
"text": "There\u0027s a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file.\n\nBinary-Affected: podman\nUpstream-version-introduced: v4.0.0\nUpstream-version-fixed: v5.6.1",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "podman: Podman kube play command may overwrite host files",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having the Important severity. This happens because of the consequences of an successful attack and the low complexity (AC:L) on exploiting this vulnerability. Although the attacker cannot control the content written to the target file, depending on which file was targeted, the exploitation of this flaw may lead sensitive data corruption (I:H) and leading the system to crash resulting in a Denial of Service attack (A:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.18"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-9566"
},
{
"category": "external",
"summary": "RHBZ#2393152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-9566",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9566"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-9566",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-9566"
}
],
"release_date": "2025-09-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-29T09:26:54+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.18 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.18"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:19046"
},
{
"category": "workaround",
"details": "Red Hat advises to not run the podman kube play command with untrusted Kubernetes YAML file as input, additionally review the Kubernetes YAML file before running it through podman may help to catch maliciously crafted secretes or volumes that may be used to exploit this vulnerability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.18"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.18"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "podman: Podman kube play command may overwrite host files"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.18"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-29T09:26:54+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.18 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.18"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:19046"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.18"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.18"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.18"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-29T09:26:54+00:00",
"details": "For OpenShift Container Platform 4.18 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.18 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.18/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.18"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:19046"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.18"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.18"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:12522
Vulnerability from csaf_redhat
Published
2025-08-04 15:19
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: sqlite security update
Notes
Topic
An update for sqlite is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for sqlite is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:12522",
"url": "https://access.redhat.com/errata/RHSA-2025:12522"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_12522.json"
}
],
"title": "Red Hat Security Advisory: sqlite security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:51+00:00",
"generator": {
"date": "2025-10-30T06:43:51+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:12522",
"initial_release_date": "2025-08-04T15:19:33+00:00",
"revision_history": [
{
"date": "2025-08-04T15:19:33+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-04T15:19:33+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:51+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:9.0::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:9.0::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-5.el9_0.1.src",
"product": {
"name": "sqlite-0:3.34.1-5.el9_0.1.src",
"product_id": "sqlite-0:3.34.1-5.el9_0.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-5.el9_0.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"product": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"product_id": "sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-5.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"product": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"product_id": "sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-5.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product_id": "lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-5.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-5.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product_id": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-5.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-5.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-5.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-5.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.34.1-5.el9_0.1.aarch64",
"product": {
"name": "sqlite-0:3.34.1-5.el9_0.1.aarch64",
"product_id": "sqlite-0:3.34.1-5.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-5.el9_0.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"product": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"product_id": "sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-5.el9_0.1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"product": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"product_id": "sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-5.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"product": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"product_id": "sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-5.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product_id": "lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-5.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-5.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product_id": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-5.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-5.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-5.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-5.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"product": {
"name": "sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"product_id": "sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-5.el9_0.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"product": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"product_id": "sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-5.el9_0.1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"product": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"product_id": "sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-5.el9_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"product": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"product_id": "sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-5.el9_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product_id": "lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-5.el9_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-5.el9_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product_id": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-5.el9_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-5.el9_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-5.el9_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-5.el9_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.34.1-5.el9_0.1.i686",
"product": {
"name": "sqlite-0:3.34.1-5.el9_0.1.i686",
"product_id": "sqlite-0:3.34.1-5.el9_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-5.el9_0.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"product": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"product_id": "sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-5.el9_0.1?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"product": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"product_id": "sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-5.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"product": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"product_id": "sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-5.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product_id": "lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-5.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-5.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product_id": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-5.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-5.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-5.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-5.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.34.1-5.el9_0.1.x86_64",
"product": {
"name": "sqlite-0:3.34.1-5.el9_0.1.x86_64",
"product_id": "sqlite-0:3.34.1-5.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-5.el9_0.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"product": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"product_id": "sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-5.el9_0.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"product": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"product_id": "sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-5.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"product": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"product_id": "sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-5.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product_id": "lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-5.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-5.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product_id": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-5.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-5.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-5.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-5.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.34.1-5.el9_0.1.s390x",
"product": {
"name": "sqlite-0:3.34.1-5.el9_0.1.s390x",
"product_id": "sqlite-0:3.34.1-5.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-5.el9_0.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"product": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"product_id": "sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-5.el9_0.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-5.el9_0.1.src as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.src"
},
"product_reference": "sqlite-0:3.34.1-5.el9_0.1.src",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.9.0)",
"product_id": "AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "AppStream-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-5.el9_0.1.src as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.src"
},
"product_reference": "sqlite-0:3.34.1-5.el9_0.1.src",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.9.0)",
"product_id": "BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"relates_to_product_reference": "BaseOS-9.0.0.Z.E4S"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.src",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.src",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-04T15:19:33+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.src",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.src",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:12522"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.src",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.src",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.src",
"AppStream-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"AppStream-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:lemon-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.src",
"BaseOS-9.0.0.Z.E4S:sqlite-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-debugsource-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-devel-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-libs-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-tcl-debuginfo-0:3.34.1-5.el9_0.1.x86_64",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.aarch64",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.i686",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.ppc64le",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.s390x",
"BaseOS-9.0.0.Z.E4S:sqlite-tools-debuginfo-0:3.34.1-5.el9_0.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:12349
Vulnerability from csaf_redhat
Published
2025-07-31 06:47
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: sqlite security update
Notes
Topic
An update for sqlite is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for sqlite is now available for Red Hat Enterprise Linux 7 Extended Lifecycle Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:12349",
"url": "https://access.redhat.com/errata/RHSA-2025:12349"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_12349.json"
}
],
"title": "Red Hat Security Advisory: sqlite security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:54+00:00",
"generator": {
"date": "2025-10-30T06:43:54+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:12349",
"initial_release_date": "2025-07-31T06:47:14+00:00",
"revision_history": [
{
"date": "2025-07-31T06:47:14+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-31T06:47:14+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:54+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 7 ELS)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_els:7"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product": {
"name": "Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_els:7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.7.17-9.el7_9.1.src",
"product": {
"name": "sqlite-0:3.7.17-9.el7_9.1.src",
"product_id": "sqlite-0:3.7.17-9.el7_9.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.7.17-9.el7_9.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.7.17-9.el7_9.1.ppc",
"product": {
"name": "sqlite-0:3.7.17-9.el7_9.1.ppc",
"product_id": "sqlite-0:3.7.17-9.el7_9.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.7.17-9.el7_9.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"product": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"product_id": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.7.17-9.el7_9.1?arch=ppc"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"product": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"product_id": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.7.17-9.el7_9.1?arch=ppc"
}
}
}
],
"category": "architecture",
"name": "ppc"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.7.17-9.el7_9.1.ppc64",
"product": {
"name": "sqlite-0:3.7.17-9.el7_9.1.ppc64",
"product_id": "sqlite-0:3.7.17-9.el7_9.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.7.17-9.el7_9.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"product": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"product_id": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.7.17-9.el7_9.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"product": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"product_id": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.7.17-9.el7_9.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "lemon-0:3.7.17-9.el7_9.1.ppc64",
"product": {
"name": "lemon-0:3.7.17-9.el7_9.1.ppc64",
"product_id": "lemon-0:3.7.17-9.el7_9.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.7.17-9.el7_9.1?arch=ppc64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"product": {
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"product_id": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl@3.7.17-9.el7_9.1?arch=ppc64"
}
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.7.17-9.el7_9.1.s390",
"product": {
"name": "sqlite-0:3.7.17-9.el7_9.1.s390",
"product_id": "sqlite-0:3.7.17-9.el7_9.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.7.17-9.el7_9.1?arch=s390"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"product": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"product_id": "sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.7.17-9.el7_9.1?arch=s390"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"product": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"product_id": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.7.17-9.el7_9.1?arch=s390"
}
}
}
],
"category": "architecture",
"name": "s390"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.7.17-9.el7_9.1.s390x",
"product": {
"name": "sqlite-0:3.7.17-9.el7_9.1.s390x",
"product_id": "sqlite-0:3.7.17-9.el7_9.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.7.17-9.el7_9.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"product": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"product_id": "sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.7.17-9.el7_9.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"product": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"product_id": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.7.17-9.el7_9.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "lemon-0:3.7.17-9.el7_9.1.s390x",
"product": {
"name": "lemon-0:3.7.17-9.el7_9.1.s390x",
"product_id": "lemon-0:3.7.17-9.el7_9.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.7.17-9.el7_9.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"product": {
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"product_id": "sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl@3.7.17-9.el7_9.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.7.17-9.el7_9.1.x86_64",
"product": {
"name": "sqlite-0:3.7.17-9.el7_9.1.x86_64",
"product_id": "sqlite-0:3.7.17-9.el7_9.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.7.17-9.el7_9.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"product": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"product_id": "sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.7.17-9.el7_9.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"product": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"product_id": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.7.17-9.el7_9.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "lemon-0:3.7.17-9.el7_9.1.x86_64",
"product": {
"name": "lemon-0:3.7.17-9.el7_9.1.x86_64",
"product_id": "lemon-0:3.7.17-9.el7_9.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.7.17-9.el7_9.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64",
"product": {
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64",
"product_id": "sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl@3.7.17-9.el7_9.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.7.17-9.el7_9.1.i686",
"product": {
"name": "sqlite-0:3.7.17-9.el7_9.1.i686",
"product_id": "sqlite-0:3.7.17-9.el7_9.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.7.17-9.el7_9.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"product": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"product_id": "sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.7.17-9.el7_9.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"product": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"product_id": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.7.17-9.el7_9.1?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"product": {
"name": "sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"product_id": "sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.7.17-9.el7_9.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"product": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"product_id": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.7.17-9.el7_9.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"product": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"product_id": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.7.17-9.el7_9.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "lemon-0:3.7.17-9.el7_9.1.ppc64le",
"product": {
"name": "lemon-0:3.7.17-9.el7_9.1.ppc64le",
"product_id": "lemon-0:3.7.17-9.el7_9.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.7.17-9.el7_9.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"product": {
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"product_id": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl@3.7.17-9.el7_9.1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"product": {
"name": "sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"product_id": "sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-doc@3.7.17-9.el7_9.1?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.7.17-9.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64"
},
"product_reference": "lemon-0:3.7.17-9.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.7.17-9.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64le"
},
"product_reference": "lemon-0:3.7.17-9.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.7.17-9.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:lemon-0:3.7.17-9.el7_9.1.s390x"
},
"product_reference": "lemon-0:3.7.17-9.el7_9.1.s390x",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.7.17-9.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:lemon-0:3.7.17-9.el7_9.1.x86_64"
},
"product_reference": "lemon-0:3.7.17-9.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.i686 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.i686"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.i686",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.ppc as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.ppc",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64le"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.s390 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.s390"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.s390",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.s390x"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.s390x",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.src as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.src"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.src",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.x86_64"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.i686 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.i686"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.s390 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390x"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.x86_64"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.7.17-9.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-doc-0:3.7.17-9.el7_9.1.noarch"
},
"product_reference": "sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64"
},
"product_reference": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le"
},
"product_reference": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.s390x"
},
"product_reference": "sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server (v. 7 ELS)",
"product_id": "7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64"
},
"product_reference": "sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.7.17-9.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64"
},
"product_reference": "lemon-0:3.7.17-9.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.7.17-9.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64le"
},
"product_reference": "lemon-0:3.7.17-9.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.7.17-9.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.s390x"
},
"product_reference": "lemon-0:3.7.17-9.el7_9.1.s390x",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.7.17-9.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.x86_64"
},
"product_reference": "lemon-0:3.7.17-9.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.i686"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.i686",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.ppc",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64le"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.s390"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.s390",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.s390x"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.s390x",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.src as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.src"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.src",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.7.17-9.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.x86_64"
},
"product_reference": "sqlite-0:3.7.17-9.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.i686 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.i686"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.s390 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390x"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.7.17-9.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.x86_64"
},
"product_reference": "sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.7.17-9.el7_9.1.noarch as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-doc-0:3.7.17-9.el7_9.1.noarch"
},
"product_reference": "sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64"
},
"product_reference": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le"
},
"product_reference": "sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.s390x as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.s390x"
},
"product_reference": "sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"relates_to_product_reference": "7Server-optional-ELS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64 as a component of Red Hat Enterprise Linux Server Optional (v. 7 ELS)",
"product_id": "7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64"
},
"product_reference": "sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64",
"relates_to_product_reference": "7Server-optional-ELS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.i686",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.s390",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.src",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.i686",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.s390",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.src",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-31T06:47:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.i686",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.s390",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.src",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.i686",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.s390",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.src",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:12349"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.i686",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.s390",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.src",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.i686",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.s390",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.src",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:lemon-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.i686",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.s390",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.src",
"7Server-ELS:sqlite-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"7Server-ELS:sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"7Server-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:lemon-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.i686",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.s390",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.src",
"7Server-optional-ELS:sqlite-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.i686",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-debuginfo-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.i686",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-devel-0:3.7.17-9.el7_9.1.x86_64",
"7Server-optional-ELS:sqlite-doc-0:3.7.17-9.el7_9.1.noarch",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.ppc64le",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.s390x",
"7Server-optional-ELS:sqlite-tcl-0:3.7.17-9.el7_9.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:18218
Vulnerability from csaf_redhat
Published
2025-10-22 05:09
Modified
2025-10-30 06:44
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.17.42 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.17.42 is now available with
updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container
Platform 4.17.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing
Kubernetes application platform solution designed for on-premise or private
cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container
Platform 4.17.42. See the following advisory for the RPM packages for this
release:
https://access.redhat.com/errata/155270
Space precludes documenting all of the container images in this advisory.
See the following Release Notes documentation, which will be updated
shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/
Security Fix(es):
* libarchive: Double free at archive_read_format_rar_seek_data() in
archive_read_support_format_rar.c (CVE-2025-5914)
* unbound: Unbound Cache poisoning (CVE-2025-5994)
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
* podman: Podman kube play command may overwrite host files (CVE-2025-9566)
* libxml: Heap use after free (UAF) leads to Denial of service (DoS)
(CVE-2025-49794)
* libxml: Type confusion leads to Denial of service (DoS) (CVE-2025-49796)
For more details about the security issue(s), including the impact, a CVSS
score, acknowledgments, and other related information, refer to the CVE
page(s) listed in the References section.
All OpenShift Container Platform 4.17 users are advised to upgrade to these
updated packages and images when they are available in the appropriate
release channel. To check for available updates, use the OpenShift CLI (oc)
or web console. Instructions for upgrading a cluster are available at
https://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.17.42 is now available with\nupdates to packages and images that fix several bugs and add enhancements.\n\n This release includes a security update for Red Hat OpenShift Container\nPlatform 4.17.\n\nRed Hat Product Security has rated this update as having a security impact\nof Important. A Common Vulnerability Scoring System (CVSS) base score,\nwhich gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing\nKubernetes application platform solution designed for on-premise or private\ncloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container\nPlatform 4.17.42. See the following advisory for the RPM packages for this\nrelease:\n\nhttps://access.redhat.com/errata/155270\n\nSpace precludes documenting all of the container images in this advisory.\nSee the following Release Notes documentation, which will be updated\nshortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nSecurity Fix(es):\n\n* libarchive: Double free at archive_read_format_rar_seek_data() in\narchive_read_support_format_rar.c (CVE-2025-5914)\n* unbound: Unbound Cache poisoning (CVE-2025-5994)\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n* podman: Podman kube play command may overwrite host files (CVE-2025-9566)\n* libxml: Heap use after free (UAF) leads to Denial of service (DoS)\n(CVE-2025-49794)\n* libxml: Type confusion leads to Denial of service (DoS) (CVE-2025-49796)\n\nFor more details about the security issue(s), including the impact, a CVSS\nscore, acknowledgments, and other related information, refer to the CVE\npage(s) listed in the References section.\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:18218",
"url": "https://access.redhat.com/errata/RHSA-2025:18218"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "2380949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380949"
},
{
"category": "external",
"summary": "2393152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393152"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_18218.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.17.42 bug fix and security update",
"tracking": {
"current_release_date": "2025-10-30T06:44:07+00:00",
"generator": {
"date": "2025-10-30T06:44:07+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:18218",
"initial_release_date": "2025-10-22T05:09:35+00:00",
"revision_history": [
{
"date": "2025-10-22T05:09:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-10-22T05:09:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:44:07+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.17",
"product": {
"name": "Red Hat OpenShift Container Platform 4.17",
"product_id": "Red Hat OpenShift Container Platform 4.17",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.17::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-5914",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2025-06-06T17:58:25.491000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370861"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as Important because it allows a local attacker with limited privileges to trigger a double-free in libarchive\u0027s RAR parser by providing a specially crafted RAR archive. Successful exploitation could result in code execution or application crashes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.17"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5914"
},
{
"category": "external",
"summary": "RHBZ#2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2598",
"url": "https://github.com/libarchive/libarchive/pull/2598"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0",
"url": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0"
}
],
"release_date": "2025-05-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-22T05:09:35+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.17"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18218"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.17"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c"
},
{
"cve": "CVE-2025-5994",
"cwe": {
"id": "CWE-349",
"name": "Acceptance of Extraneous Untrusted Data With Trusted Data"
},
"discovery_date": "2025-07-16T15:01:36.497027+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380949"
}
],
"notes": [
{
"category": "description",
"text": "A cache poisoning flaw was found in Unbound. Resolvers supporting EDNS Client Subnet (ECS) must segregate outgoing queries to accommodate different outgoing ECS information. This issue reopens resolvers to a birthday paradox attack, known as the Rebirthday Attack, which attempts to match the DNS transaction ID with cache non-ECS poisoned replies.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: Unbound Cache poisoning",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is considered Important rather than Moderate because it directly compromises the integrity of DNS caching mechanisms in resolvers supporting EDNS Client Subnet (ECS). The flaw allows an attacker to exploit the birthday paradox by generating a high volume of concurrent queries with different ECS values, thereby increasing the chance of a transaction ID collision with a spoofed response. If the resolver fails to properly segregate cache entries by ECS scope, it may accept and cache a malicious non-ECS response, effectively leading to DNS cache poisoning. Unlike typical poisoning attempts that require precise timing or privileged network positions, this attack can be carried out remotely with a high success rate, especially in resolvers that do not correctly isolate ECS queries.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.17"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5994"
},
{
"category": "external",
"summary": "RHBZ#2380949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5994"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5994",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5994"
},
{
"category": "external",
"summary": "https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt",
"url": "https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt"
}
],
"release_date": "2025-07-16T14:38:22.738000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-22T05:09:35+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.17"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18218"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.17"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.17"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "unbound: Unbound Cache poisoning"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.17"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-22T05:09:35+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.17"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18218"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.17"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.17"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Paul Holzinger"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2025-9566",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-09-04T15:45:46.448000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2393152"
}
],
"notes": [
{
"category": "description",
"text": "There\u0027s a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file.\n\nBinary-Affected: podman\nUpstream-version-introduced: v4.0.0\nUpstream-version-fixed: v5.6.1",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "podman: Podman kube play command may overwrite host files",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having the Important severity. This happens because of the consequences of an successful attack and the low complexity (AC:L) on exploiting this vulnerability. Although the attacker cannot control the content written to the target file, depending on which file was targeted, the exploitation of this flaw may lead sensitive data corruption (I:H) and leading the system to crash resulting in a Denial of Service attack (A:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.17"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-9566"
},
{
"category": "external",
"summary": "RHBZ#2393152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-9566",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9566"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-9566",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-9566"
}
],
"release_date": "2025-09-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-22T05:09:35+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.17"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18218"
},
{
"category": "workaround",
"details": "Red Hat advises to not run the podman kube play command with untrusted Kubernetes YAML file as input, additionally review the Kubernetes YAML file before running it through podman may help to catch maliciously crafted secretes or volumes that may be used to exploit this vulnerability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.17"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.17"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "podman: Podman kube play command may overwrite host files"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.17"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-22T05:09:35+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.17"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18218"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.17"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.17"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.17"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-22T05:09:35+00:00",
"details": "For OpenShift Container Platform 4.17 see the following documentation,\nwhich will be updated shortly for this release, for important instructions\non how to upgrade your cluster and fully apply this asynchronous errata\nupdate:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata\nfor x86_64, s390x, ppc64le, and aarch64 architectures. The image digests\nmay be found at\nhttps://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.17 users are advised to upgrade to these\nupdated packages and images when they are available in the appropriate\nrelease channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.17/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.17"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18218"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.17"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.17"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:12521
Vulnerability from csaf_redhat
Published
2025-08-04 15:41
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: sqlite security update
Notes
Topic
An update for sqlite is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for sqlite is now available for Red Hat Enterprise Linux 8.8 Update Services for SAP Solutions and Red Hat Enterprise Linux 8.8 Telecommunications Update Service.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:12521",
"url": "https://access.redhat.com/errata/RHSA-2025:12521"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_12521.json"
}
],
"title": "Red Hat Security Advisory: sqlite security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:51+00:00",
"generator": {
"date": "2025-10-30T06:43:51+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:12521",
"initial_release_date": "2025-08-04T15:41:21+00:00",
"revision_history": [
{
"date": "2025-08-04T15:41:21+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-04T15:41:21+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:51+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_e4s:8.8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_e4s:8.8::baseos"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_tus:8.8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_tus:8.8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-18.el8_8.2.src",
"product": {
"name": "sqlite-0:3.26.0-18.el8_8.2.src",
"product_id": "sqlite-0:3.26.0-18.el8_8.2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-18.el8_8.2?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"product": {
"name": "sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"product_id": "sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-18.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"product": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"product_id": "sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-18.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"product": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"product_id": "sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-18.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"product": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"product_id": "sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-18.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product_id": "lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-18.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-18.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product_id": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-18.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-18.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-18.el8_8.2?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "lemon-0:3.26.0-18.el8_8.2.ppc64le",
"product": {
"name": "lemon-0:3.26.0-18.el8_8.2.ppc64le",
"product_id": "lemon-0:3.26.0-18.el8_8.2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.26.0-18.el8_8.2?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-18.el8_8.2.i686",
"product": {
"name": "sqlite-0:3.26.0-18.el8_8.2.i686",
"product_id": "sqlite-0:3.26.0-18.el8_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-18.el8_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"product": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"product_id": "sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-18.el8_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"product": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"product_id": "sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-18.el8_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"product": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"product_id": "sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-18.el8_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product_id": "lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-18.el8_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-18.el8_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product_id": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-18.el8_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-18.el8_8.2?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-18.el8_8.2?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-18.el8_8.2.x86_64",
"product": {
"name": "sqlite-0:3.26.0-18.el8_8.2.x86_64",
"product_id": "sqlite-0:3.26.0-18.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-18.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"product": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"product_id": "sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-18.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"product": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"product_id": "sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-18.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"product": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"product_id": "sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-18.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product_id": "lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-18.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-18.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product_id": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-18.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-18.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-18.el8_8.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "lemon-0:3.26.0-18.el8_8.2.x86_64",
"product": {
"name": "lemon-0:3.26.0-18.el8_8.2.x86_64",
"product_id": "lemon-0:3.26.0-18.el8_8.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.26.0-18.el8_8.2?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"product": {
"name": "sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"product_id": "sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-doc@3.26.0-18.el8_8.2?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "lemon-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "lemon-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.src as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.src"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.src",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-18.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-doc-0:3.26.0-18.el8_8.2.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream E4S (v.8.8)",
"product_id": "AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:lemon-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "lemon-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.src as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.src"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.src",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-18.el8_8.2.noarch as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-doc-0:3.26.0-18.el8_8.2.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux AppStream TUS (v.8.8)",
"product_id": "AppStream-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "AppStream-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "lemon-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "lemon-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.src as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.src"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.src",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-18.el8_8.2.noarch as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-doc-0:3.26.0-18.el8_8.2.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS E4S (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.E4S"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:lemon-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "lemon-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.src as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.src"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.src",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-18.el8_8.2.noarch as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-doc-0:3.26.0-18.el8_8.2.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64 as a component of Red Hat Enterprise Linux BaseOS TUS (v.8.8)",
"product_id": "BaseOS-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"relates_to_product_reference": "BaseOS-8.8.0.Z.TUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.src",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:lemon-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.src",
"AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.src",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:lemon-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.src",
"BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-04T15:41:21+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.src",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:lemon-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.src",
"AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.src",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:lemon-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.src",
"BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:12521"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.src",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:lemon-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.src",
"AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.src",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:lemon-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.src",
"BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.src",
"AppStream-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"AppStream-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:lemon-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.src",
"AppStream-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"AppStream-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"AppStream-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"AppStream-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:lemon-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.src",
"BaseOS-8.8.0.Z.E4S:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.ppc64le",
"BaseOS-8.8.0.Z.E4S:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:lemon-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:lemon-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.src",
"BaseOS-8.8.0.Z.TUS:sqlite-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-analyzer-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-debugsource-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-devel-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-doc-0:3.26.0-18.el8_8.2.noarch",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-libs-debuginfo-0:3.26.0-18.el8_8.2.x86_64",
"BaseOS-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.i686",
"BaseOS-8.8.0.Z.TUS:sqlite-tcl-debuginfo-0:3.26.0-18.el8_8.2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:18240
Vulnerability from csaf_redhat
Published
2025-10-23 17:46
Modified
2025-10-30 06:44
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.13.61 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.13.61 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.13.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container Platform 4.13.61. See the following advisory for the RPM packages for this release:
https://access.redhat.com/errata/155272
Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes
Security Fix(es):
None
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.13.61 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.13.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container Platform 4.13.61. See the following advisory for the RPM packages for this release:\n\nhttps://access.redhat.com/errata/155272\n\nSpace precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nSecurity Fix(es):\n\nNone\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:18240",
"url": "https://access.redhat.com/errata/RHSA-2025:18240"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "2380949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380949"
},
{
"category": "external",
"summary": "2393152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393152"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_18240.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.13.61 bug fix and security update",
"tracking": {
"current_release_date": "2025-10-30T06:44:09+00:00",
"generator": {
"date": "2025-10-30T06:44:09+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:18240",
"initial_release_date": "2025-10-23T17:46:13+00:00",
"revision_history": [
{
"date": "2025-10-23T17:46:13+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-10-23T17:46:13+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:44:09+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.13",
"product": {
"name": "Red Hat OpenShift Container Platform 4.13",
"product_id": "Red Hat OpenShift Container Platform 4.13",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.13::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-5994",
"cwe": {
"id": "CWE-349",
"name": "Acceptance of Extraneous Untrusted Data With Trusted Data"
},
"discovery_date": "2025-07-16T15:01:36.497027+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380949"
}
],
"notes": [
{
"category": "description",
"text": "A cache poisoning flaw was found in Unbound. Resolvers supporting EDNS Client Subnet (ECS) must segregate outgoing queries to accommodate different outgoing ECS information. This issue reopens resolvers to a birthday paradox attack, known as the Rebirthday Attack, which attempts to match the DNS transaction ID with cache non-ECS poisoned replies.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: Unbound Cache poisoning",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is considered Important rather than Moderate because it directly compromises the integrity of DNS caching mechanisms in resolvers supporting EDNS Client Subnet (ECS). The flaw allows an attacker to exploit the birthday paradox by generating a high volume of concurrent queries with different ECS values, thereby increasing the chance of a transaction ID collision with a spoofed response. If the resolver fails to properly segregate cache entries by ECS scope, it may accept and cache a malicious non-ECS response, effectively leading to DNS cache poisoning. Unlike typical poisoning attempts that require precise timing or privileged network positions, this attack can be carried out remotely with a high success rate, especially in resolvers that do not correctly isolate ECS queries.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.13"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5994"
},
{
"category": "external",
"summary": "RHBZ#2380949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5994"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5994",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5994"
},
{
"category": "external",
"summary": "https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt",
"url": "https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt"
}
],
"release_date": "2025-07-16T14:38:22.738000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-23T17:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x86_64_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.13"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18240"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.13"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.13"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "unbound: Unbound Cache poisoning"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.13"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-23T17:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x86_64_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.13"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18240"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.13"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.13"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Paul Holzinger"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2025-9566",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-09-04T15:45:46.448000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2393152"
}
],
"notes": [
{
"category": "description",
"text": "There\u0027s a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file.\n\nBinary-Affected: podman\nUpstream-version-introduced: v4.0.0\nUpstream-version-fixed: v5.6.1",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "podman: Podman kube play command may overwrite host files",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having the Important severity. This happens because of the consequences of an successful attack and the low complexity (AC:L) on exploiting this vulnerability. Although the attacker cannot control the content written to the target file, depending on which file was targeted, the exploitation of this flaw may lead sensitive data corruption (I:H) and leading the system to crash resulting in a Denial of Service attack (A:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.13"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-9566"
},
{
"category": "external",
"summary": "RHBZ#2393152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-9566",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9566"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-9566",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-9566"
}
],
"release_date": "2025-09-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-23T17:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x86_64_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.13"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18240"
},
{
"category": "workaround",
"details": "Red Hat advises to not run the podman kube play command with untrusted Kubernetes YAML file as input, additionally review the Kubernetes YAML file before running it through podman may help to catch maliciously crafted secretes or volumes that may be used to exploit this vulnerability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.13"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.13"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "podman: Podman kube play command may overwrite host files"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.13"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-23T17:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x86_64_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.13"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18240"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.13"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.13"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.13"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-23T17:46:13+00:00",
"details": "For OpenShift Container Platform 4.13 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html/release_notes\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\n The sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x86_64_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.13 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.13/html-single/updating_clusters/index#updating-cluster-within-minor.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.13"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18240"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.13"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.13"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:13335
Vulnerability from csaf_redhat
Published
2025-08-07 07:50
Modified
2025-10-30 05:42
Summary
Red Hat Security Advisory: Insights proxy Container Image
Notes
Topic
Initial GA Release of Red Hat Insights proxy
Details
The Insights proxy Container is used by the Insights proxy product RPM and serves as an intermediary between cystomer systems in disconnected networks, air-gapped systems or systems with no outside connections and Insights.
The Insights proxy routes all Red Hat Insights traffic through itself, providing a layer of privary and security for disconnected customer systems.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Initial GA Release of Red Hat Insights proxy",
"title": "Topic"
},
{
"category": "general",
"text": "The Insights proxy Container is used by the Insights proxy product RPM and serves as an intermediary between cystomer systems in disconnected networks, air-gapped systems or systems with no outside connections and Insights.\nThe Insights proxy routes all Red Hat Insights traffic through itself, providing a layer of privary and security for disconnected customer systems.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:13335",
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-52533",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-4373",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-49794",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-49796",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-6021",
"url": "https://access.redhat.com/security/cve/CVE-2025-6021"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-6965",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-7425",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-8058",
"url": "https://access.redhat.com/security/cve/CVE-2025-8058"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_13335.json"
}
],
"title": "Red Hat Security Advisory: Insights proxy Container Image",
"tracking": {
"current_release_date": "2025-10-30T05:42:44+00:00",
"generator": {
"date": "2025-10-30T05:42:44+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:13335",
"initial_release_date": "2025-08-07T07:50:20+00:00",
"revision_history": [
{
"date": "2025-08-07T07:50:20+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-07T07:50:23+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T05:42:44+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Insights proxy 1.5",
"product": {
"name": "Red Hat Insights proxy 1.5",
"product_id": "Red Hat Insights proxy 1.5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:insights_proxy:1.5::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Insights proxy"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"product": {
"name": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"product_id": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/insights-proxy-container-rhel9@sha256%3Ac26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7?arch=amd64\u0026repository_url=registry.redhat.io/insights-proxy\u0026tag=1.5.5-1754504343"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64",
"product": {
"name": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64",
"product_id": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64",
"product_identification_helper": {
"purl": "pkg:oci/insights-proxy-container-rhel9@sha256%3Ae54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d?arch=arm64\u0026repository_url=registry.redhat.io/insights-proxy\u0026tag=1.5.5-1754504343"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64 as a component of Red Hat Insights proxy 1.5",
"product_id": "Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64"
},
"product_reference": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"relates_to_product_reference": "Red Hat Insights proxy 1.5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64 as a component of Red Hat Insights proxy 1.5",
"product_id": "Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
},
"product_reference": "registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64",
"relates_to_product_reference": "Red Hat Insights proxy 1.5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-52533",
"cwe": {
"id": "CWE-193",
"name": "Off-by-one Error"
},
"discovery_date": "2024-11-11T23:00:48.125765+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2325340"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Glib library. A buffer overflow condition can be triggered in certain conditions due to an off-by-one error in SOCKS4_CONN_MSG_LEN. This issue may lead to an application crash or other undefined behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: buffer overflow in set_connect_msg()",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-52533"
},
{
"category": "external",
"summary": "RHBZ#2325340",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2325340"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-52533"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3461"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1",
"url": "https://gitlab.gnome.org/GNOME/glib/-/releases/2.82.1"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home",
"url": "https://gitlab.gnome.org/Teams/Releng/security/-/wikis/home"
}
],
"release_date": "2024-11-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: buffer overflow in set_connect_msg()"
},
{
"cve": "CVE-2025-4373",
"cwe": {
"id": "CWE-124",
"name": "Buffer Underwrite (\u0027Buffer Underflow\u0027)"
},
"discovery_date": "2025-05-06T00:33:30.003000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2364265"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in GLib, which is vulnerable to an integer overflow in the g_string_insert_unichar() function. When the position at which to insert the character is large, the position will overflow, leading to a buffer underwrite.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to the successful exploitation of a CWE-124: Buffer Underwrite (\u0027Buffer Underflow\u0027) vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nSecure baseline configurations enforce strict memory handling policies, while change controls ensure any deviations are reviewed and approved. Least functionality reduces the attack surface by disabling unnecessary features that could introduce memory risks. Process isolation contains faults within individual workloads, minimizing broader impact. Real-time monitoring and malicious code protection detect and respond to abnormal memory behavior or exploitation attempts. Hardened configuration settings restrict low-level memory access, lowering the likelihood of unsafe operations. Finally, the platform uses memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) to strengthen resilience against buffer underwrite exploits.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4373"
},
{
"category": "external",
"summary": "RHBZ#2364265",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2364265"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4373"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677",
"url": "https://gitlab.gnome.org/GNOME/glib/-/issues/3677"
}
],
"release_date": "2025-05-06T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "Currently, no mitigation is available for this vulnerability.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 4.8,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glib: Buffer Underflow on GLib through glib/gstring.c via function g_string_insert_unichar"
},
{
"acknowledgments": [
{
"names": [
"Ahmed Lekssays"
]
}
],
"cve": "CVE-2025-6021",
"cwe": {
"id": "CWE-121",
"name": "Stack-based Buffer Overflow"
},
"discovery_date": "2025-06-12T07:55:45.428000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372406"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxml2\u0027s xmlBuildQName function, where integer overflows in buffer size calculations can lead to a stack-based buffer overflow. This issue can result in memory corruption or a denial of service when processing crafted input.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is rated Moderate due to the lack of confidentiality impact and limited integrity concerns, with the main risk being potential denial-of-service from a crash. Exploitation requires crafted XML input and specific application behavior using xmlBuildQName. While it\u2019s a write overflow, modern mitigations make remote code execution unlikely.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6021"
},
{
"category": "external",
"summary": "RHBZ#2372406",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372406"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6021"
}
],
"release_date": "2025-06-12T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options don\u0027t meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base, or stability. Users are strongly advised to apply vendor-supplied patches as soon as they become available to address the underlying integer overflow flaw in the affected code.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "libxml2: Integer Overflow in xmlBuildQName() Leads to Stack Buffer Overflow in libxml2"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-8058",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2025-07-23T20:00:41.541234+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2383146"
}
],
"notes": [
{
"category": "description",
"text": "A double-free vulnerability has been discovered in glibc (GNU C Library). This flaw occurs during bracket expression parsing within the regcomp function, specifically when a memory allocation failure takes place. Exploitation of a double-free vulnerability can lead to memory corruption, which could enable an attacker to achieve arbitrary code execution or a denial of service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "glibc: Double free in glibc",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Within regulated environments, a combination of the following controls acts as a significant barrier to successfully exploiting a CWE-415: Double Free vulnerability and therefore downgrades the severity of this particular CVE from Moderate to Low.\n\nThe platform enforces hardening guidelines to apply the most restrictive settings necessary for operational requirements. Baseline configurations and system controls ensure secure software configurations, while least functionality reduces the attack surface by enforcing safe memory allocation and deallocation practices, lowering the risk of double-free vulnerabilities. The environment employs IPS/IDS and antimalware solutions to detect and prevent malicious code while providing real-time visibility into memory usage, reducing the risk of arbitrary code execution. Static code analysis and peer reviews enforce strong input validation and error handling, minimizing the risk of denial-of-service (DoS) attacks. In the event of successful exploitation, process isolation prevents compromised workloads from accessing other processes\u2019 memory, containing the potential impact. Finally, memory protection mechanisms such as Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) enhance resilience against memory-related vulnerabilities.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-8058"
},
{
"category": "external",
"summary": "RHBZ#2383146",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2383146"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-8058",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8058"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-8058",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-8058"
},
{
"category": "external",
"summary": "https://sourceware.org/bugzilla/show_bug.cgi?id=33185",
"url": "https://sourceware.org/bugzilla/show_bug.cgi?id=33185"
},
{
"category": "external",
"summary": "https://sourceware.org/git/?p=glibc.git;a=commit;h=3ff17af18c38727b88d9115e536c069e6b5d601f",
"url": "https://sourceware.org/git/?p=glibc.git;a=commit;h=3ff17af18c38727b88d9115e536c069e6b5d601f"
}
],
"release_date": "2025-07-23T19:57:17.138000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "LOW",
"baseScore": 4.2,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:L/I:L/A:L",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "glibc: Double free in glibc"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-07T07:50:20+00:00",
"details": "The Insights proxy container image provided here is downloaded by the Red Hat Insights proxy product RPM.\nBefore applying this update, make sure all previously released errata relevant to your system have been applied.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:13335"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:c26d589f12647890b67aaa986f54d3f7c6f7f2563fb5a73f38d559e6138739d7_amd64",
"Red Hat Insights proxy 1.5:registry.redhat.io/insights-proxy/insights-proxy-container-rhel9@sha256:e54a5a5f9d69dd6a03e2bcd845e2202910a188d266d4a79b12c387ceffc36f2d_arm64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:15397
Vulnerability from csaf_redhat
Published
2025-10-21 14:50
Modified
2025-10-30 06:44
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.20.0 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.20.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container
Platform 4.20.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container Platform 4.20.0. See the following advisory for the RPM packages for this release:
https://access.redhat.com/errata/149403
Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html/release_notes/
Security Fix(es):
* libarchive: Double free at archive_read_format_rar_seek_data() in
archive_read_support_format_rar.c (CVE-2025-5914)
* unbound: Unbound Cache poisoning (CVE-2025-5994)
* podman: podman missing TLS verification (CVE-2025-6032)
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
* libxml: Heap use after free (UAF) leads to Denial of service (DoS)
(CVE-2025-49794)
* libxml: Type confusion leads to Denial of service (DoS) (CVE-2025-49796)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.20 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html-single/updating_clusters/index#updating-cluster-cli.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.20.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container\nPlatform 4.20.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container Platform 4.20.0. See the following advisory for the RPM packages for this release:\n\nhttps://access.redhat.com/errata/149403\n\nSpace precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html/release_notes/\n\nSecurity Fix(es):\n\n* libarchive: Double free at archive_read_format_rar_seek_data() in\narchive_read_support_format_rar.c (CVE-2025-5914)\n* unbound: Unbound Cache poisoning (CVE-2025-5994)\n* podman: podman missing TLS verification (CVE-2025-6032)\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n* libxml: Heap use after free (UAF) leads to Denial of service (DoS)\n(CVE-2025-49794)\n* libxml: Type confusion leads to Denial of service (DoS) (CVE-2025-49796)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.20 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:15397",
"url": "https://access.redhat.com/errata/RHSA-2025:15397"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "2372501",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372501"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "2380949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380949"
},
{
"category": "external",
"summary": "OCPBUGS-55905",
"url": "https://issues.redhat.com/browse/OCPBUGS-55905"
},
{
"category": "external",
"summary": "OCPBUGS-55906",
"url": "https://issues.redhat.com/browse/OCPBUGS-55906"
},
{
"category": "external",
"summary": "OCPBUGS-56277",
"url": "https://issues.redhat.com/browse/OCPBUGS-56277"
},
{
"category": "external",
"summary": "OCPBUGS-56645",
"url": "https://issues.redhat.com/browse/OCPBUGS-56645"
},
{
"category": "external",
"summary": "OCPBUGS-58117",
"url": "https://issues.redhat.com/browse/OCPBUGS-58117"
},
{
"category": "external",
"summary": "OCPBUGS-59201",
"url": "https://issues.redhat.com/browse/OCPBUGS-59201"
},
{
"category": "external",
"summary": "OCPBUGS-59630",
"url": "https://issues.redhat.com/browse/OCPBUGS-59630"
},
{
"category": "external",
"summary": "OCPBUGS-60099",
"url": "https://issues.redhat.com/browse/OCPBUGS-60099"
},
{
"category": "external",
"summary": "OCPBUGS-60664",
"url": "https://issues.redhat.com/browse/OCPBUGS-60664"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_15397.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.20.0 bug fix and security update",
"tracking": {
"current_release_date": "2025-10-30T06:44:02+00:00",
"generator": {
"date": "2025-10-30T06:44:02+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:15397",
"initial_release_date": "2025-10-21T14:50:28+00:00",
"revision_history": [
{
"date": "2025-10-21T14:50:28+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-10-21T14:50:28+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:44:02+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.20",
"product": {
"name": "Red Hat OpenShift Container Platform 4.20",
"product_id": "Red Hat OpenShift Container Platform 4.20",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.20::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-5914",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2025-06-06T17:58:25.491000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370861"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as Important because it allows a local attacker with limited privileges to trigger a double-free in libarchive\u0027s RAR parser by providing a specially crafted RAR archive. Successful exploitation could result in code execution or application crashes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.20"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5914"
},
{
"category": "external",
"summary": "RHBZ#2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2598",
"url": "https://github.com/libarchive/libarchive/pull/2598"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0",
"url": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0"
}
],
"release_date": "2025-05-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-21T14:50:28+00:00",
"details": "For OpenShift Container Platform 4.20 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:d1dc76522d1e235b97675b28e977cb8c452f47d39c0eb519cde02114925f91d2\n\n (For s390x architecture)\n The image digest is sha256:bb2b07ca992b8c976341c145ccdcefbd57e946a590efaa5e10d60fc5a2cbe503\n\n (For ppc64le architecture)\n The image digest is sha256:678369ac0a189674b3d9f5779ee7042b39e625ee580579ec302d8899f8ddc613\n\n (For aarch64 architecture)\n The image digest is sha256:791079aeb081a9193cec139ba4dccbafbfc9437b6e5e39d70225b0e6d2f51b34\n\nAll OpenShift Container Platform 4.20 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.20"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15397"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.20"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c"
},
{
"cve": "CVE-2025-5994",
"cwe": {
"id": "CWE-349",
"name": "Acceptance of Extraneous Untrusted Data With Trusted Data"
},
"discovery_date": "2025-07-16T15:01:36.497027+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380949"
}
],
"notes": [
{
"category": "description",
"text": "A cache poisoning flaw was found in Unbound. Resolvers supporting EDNS Client Subnet (ECS) must segregate outgoing queries to accommodate different outgoing ECS information. This issue reopens resolvers to a birthday paradox attack, known as the Rebirthday Attack, which attempts to match the DNS transaction ID with cache non-ECS poisoned replies.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: Unbound Cache poisoning",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is considered Important rather than Moderate because it directly compromises the integrity of DNS caching mechanisms in resolvers supporting EDNS Client Subnet (ECS). The flaw allows an attacker to exploit the birthday paradox by generating a high volume of concurrent queries with different ECS values, thereby increasing the chance of a transaction ID collision with a spoofed response. If the resolver fails to properly segregate cache entries by ECS scope, it may accept and cache a malicious non-ECS response, effectively leading to DNS cache poisoning. Unlike typical poisoning attempts that require precise timing or privileged network positions, this attack can be carried out remotely with a high success rate, especially in resolvers that do not correctly isolate ECS queries.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.20"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5994"
},
{
"category": "external",
"summary": "RHBZ#2380949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5994"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5994",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5994"
},
{
"category": "external",
"summary": "https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt",
"url": "https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt"
}
],
"release_date": "2025-07-16T14:38:22.738000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-21T14:50:28+00:00",
"details": "For OpenShift Container Platform 4.20 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:d1dc76522d1e235b97675b28e977cb8c452f47d39c0eb519cde02114925f91d2\n\n (For s390x architecture)\n The image digest is sha256:bb2b07ca992b8c976341c145ccdcefbd57e946a590efaa5e10d60fc5a2cbe503\n\n (For ppc64le architecture)\n The image digest is sha256:678369ac0a189674b3d9f5779ee7042b39e625ee580579ec302d8899f8ddc613\n\n (For aarch64 architecture)\n The image digest is sha256:791079aeb081a9193cec139ba4dccbafbfc9437b6e5e39d70225b0e6d2f51b34\n\nAll OpenShift Container Platform 4.20 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.20"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15397"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.20"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.20"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "unbound: Unbound Cache poisoning"
},
{
"acknowledgments": [
{
"names": [
"Paul Holzinger"
],
"organization": "Red Hat Inc.",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2025-6032",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2025-06-12T15:14:34.557000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372501"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Podman. The podman machine init command fails to verify the TLS certificate when downloading the VM images from an OCI registry. This issue results in a Man In The Middle attack.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "podman: podman missing TLS verification",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "To exploit this flaw, a user needs to download an image from an untrusted OCI registry, specifically, an OCI registry with an invalid TLS certificate. This allows a remote attacker with access to the network path between the registry and the client to perform a Man In the Middle attack.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.20"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6032"
},
{
"category": "external",
"summary": "RHBZ#2372501",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372501"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6032",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6032"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6032",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6032"
}
],
"release_date": "2025-06-24T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-21T14:50:28+00:00",
"details": "For OpenShift Container Platform 4.20 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:d1dc76522d1e235b97675b28e977cb8c452f47d39c0eb519cde02114925f91d2\n\n (For s390x architecture)\n The image digest is sha256:bb2b07ca992b8c976341c145ccdcefbd57e946a590efaa5e10d60fc5a2cbe503\n\n (For ppc64le architecture)\n The image digest is sha256:678369ac0a189674b3d9f5779ee7042b39e625ee580579ec302d8899f8ddc613\n\n (For aarch64 architecture)\n The image digest is sha256:791079aeb081a9193cec139ba4dccbafbfc9437b6e5e39d70225b0e6d2f51b34\n\nAll OpenShift Container Platform 4.20 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.20"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15397"
},
{
"category": "workaround",
"details": "Download the VM image manually with another tool that verifies the TLS certificate and then pass the local image as a file path to podman, for example:\n\n# podman machine init --image \u003clocal-image-path\u003e",
"product_ids": [
"Red Hat OpenShift Container Platform 4.20"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.20"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "podman: podman missing TLS verification"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.20"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-21T14:50:28+00:00",
"details": "For OpenShift Container Platform 4.20 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:d1dc76522d1e235b97675b28e977cb8c452f47d39c0eb519cde02114925f91d2\n\n (For s390x architecture)\n The image digest is sha256:bb2b07ca992b8c976341c145ccdcefbd57e946a590efaa5e10d60fc5a2cbe503\n\n (For ppc64le architecture)\n The image digest is sha256:678369ac0a189674b3d9f5779ee7042b39e625ee580579ec302d8899f8ddc613\n\n (For aarch64 architecture)\n The image digest is sha256:791079aeb081a9193cec139ba4dccbafbfc9437b6e5e39d70225b0e6d2f51b34\n\nAll OpenShift Container Platform 4.20 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.20"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15397"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.20"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.20"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.20"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-21T14:50:28+00:00",
"details": "For OpenShift Container Platform 4.20 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:d1dc76522d1e235b97675b28e977cb8c452f47d39c0eb519cde02114925f91d2\n\n (For s390x architecture)\n The image digest is sha256:bb2b07ca992b8c976341c145ccdcefbd57e946a590efaa5e10d60fc5a2cbe503\n\n (For ppc64le architecture)\n The image digest is sha256:678369ac0a189674b3d9f5779ee7042b39e625ee580579ec302d8899f8ddc613\n\n (For aarch64 architecture)\n The image digest is sha256:791079aeb081a9193cec139ba4dccbafbfc9437b6e5e39d70225b0e6d2f51b34\n\nAll OpenShift Container Platform 4.20 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.20"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15397"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.20"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.20"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.20"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-21T14:50:28+00:00",
"details": "For OpenShift Container Platform 4.20 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is sha256:d1dc76522d1e235b97675b28e977cb8c452f47d39c0eb519cde02114925f91d2\n\n (For s390x architecture)\n The image digest is sha256:bb2b07ca992b8c976341c145ccdcefbd57e946a590efaa5e10d60fc5a2cbe503\n\n (For ppc64le architecture)\n The image digest is sha256:678369ac0a189674b3d9f5779ee7042b39e625ee580579ec302d8899f8ddc613\n\n (For aarch64 architecture)\n The image digest is sha256:791079aeb081a9193cec139ba4dccbafbfc9437b6e5e39d70225b0e6d2f51b34\n\nAll OpenShift Container Platform 4.20 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.20/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.20"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15397"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.20"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.20"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:18217
Vulnerability from csaf_redhat
Published
2025-10-22 06:20
Modified
2025-10-30 06:44
Summary
Red Hat Security Advisory: OpenShift Container Platform 4.19.17 bug fix and security update
Notes
Topic
Red Hat OpenShift Container Platform release 4.19.17 is now available with updates to packages and images that fix several bugs and add enhancements.
This release includes a security update for Red Hat OpenShift Container Platform 4.19.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is Red Hat's cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.
This advisory contains the container images for Red Hat OpenShift Container Platform 4.19.17. See the following advisory for the RPM packages for this release:
https://access.redhat.com/errata/155269
Space precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:
https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/
Security Fix(es):
* libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c (CVE-2025-5914)
* unbound: Unbound Cache poisoning (CVE-2025-5994)
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
* podman: Podman kube play command may overwrite host files (CVE-2025-9566)
* libxml: Heap use after free (UAF) leads to Denial of service (DoS) (CVE-2025-49794)
* libxml: Type confusion leads to Denial of service (DoS) (CVE-2025-49796)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
All OpenShift Container Platform 4.19 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc)
or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Container Platform release 4.19.17 is now available with updates to packages and images that fix several bugs and add enhancements.\n\nThis release includes a security update for Red Hat OpenShift Container Platform 4.19.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability\nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is Red Hat\u0027s cloud computing Kubernetes application platform solution designed for on-premise or private cloud deployments.\n\nThis advisory contains the container images for Red Hat OpenShift Container Platform 4.19.17. See the following advisory for the RPM packages for this release:\n\nhttps://access.redhat.com/errata/155269\n\nSpace precludes documenting all of the container images in this advisory. See the following Release Notes documentation, which will be updated shortly for this release, for details about these changes:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/\n\nSecurity Fix(es):\n\n* libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c (CVE-2025-5914)\n* unbound: Unbound Cache poisoning (CVE-2025-5994)\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n* podman: Podman kube play command may overwrite host files (CVE-2025-9566)\n* libxml: Heap use after free (UAF) leads to Denial of service (DoS) (CVE-2025-49794)\n* libxml: Type confusion leads to Denial of service (DoS) (CVE-2025-49796)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.\n\nAll OpenShift Container Platform 4.19 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc)\nor web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:18217",
"url": "https://access.redhat.com/errata/RHSA-2025:18217"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "2380949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380949"
},
{
"category": "external",
"summary": "2393152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393152"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_18217.json"
}
],
"title": "Red Hat Security Advisory: OpenShift Container Platform 4.19.17 bug fix and security update",
"tracking": {
"current_release_date": "2025-10-30T06:44:06+00:00",
"generator": {
"date": "2025-10-30T06:44:06+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:18217",
"initial_release_date": "2025-10-22T06:20:41+00:00",
"revision_history": [
{
"date": "2025-10-22T06:20:41+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-10-22T06:20:41+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:44:06+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 4.19",
"product": {
"name": "Red Hat OpenShift Container Platform 4.19",
"product_id": "Red Hat OpenShift Container Platform 4.19",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:4.19::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-5914",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2025-06-06T17:58:25.491000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370861"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as Important because it allows a local attacker with limited privileges to trigger a double-free in libarchive\u0027s RAR parser by providing a specially crafted RAR archive. Successful exploitation could result in code execution or application crashes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.19"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5914"
},
{
"category": "external",
"summary": "RHBZ#2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2598",
"url": "https://github.com/libarchive/libarchive/pull/2598"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0",
"url": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0"
}
],
"release_date": "2025-05-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-22T06:20:41+00:00",
"details": "For OpenShift Container Platform 4.19 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.19 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.19"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18217"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.19"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c"
},
{
"cve": "CVE-2025-5994",
"cwe": {
"id": "CWE-349",
"name": "Acceptance of Extraneous Untrusted Data With Trusted Data"
},
"discovery_date": "2025-07-16T15:01:36.497027+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380949"
}
],
"notes": [
{
"category": "description",
"text": "A cache poisoning flaw was found in Unbound. Resolvers supporting EDNS Client Subnet (ECS) must segregate outgoing queries to accommodate different outgoing ECS information. This issue reopens resolvers to a birthday paradox attack, known as the Rebirthday Attack, which attempts to match the DNS transaction ID with cache non-ECS poisoned replies.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "unbound: Unbound Cache poisoning",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability is considered Important rather than Moderate because it directly compromises the integrity of DNS caching mechanisms in resolvers supporting EDNS Client Subnet (ECS). The flaw allows an attacker to exploit the birthday paradox by generating a high volume of concurrent queries with different ECS values, thereby increasing the chance of a transaction ID collision with a spoofed response. If the resolver fails to properly segregate cache entries by ECS scope, it may accept and cache a malicious non-ECS response, effectively leading to DNS cache poisoning. Unlike typical poisoning attempts that require precise timing or privileged network positions, this attack can be carried out remotely with a high success rate, especially in resolvers that do not correctly isolate ECS queries.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.19"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5994"
},
{
"category": "external",
"summary": "RHBZ#2380949",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380949"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5994"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5994",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5994"
},
{
"category": "external",
"summary": "https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt",
"url": "https://nlnetlabs.nl/downloads/unbound/CVE-2025-5994.txt"
}
],
"release_date": "2025-07-16T14:38:22.738000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-22T06:20:41+00:00",
"details": "For OpenShift Container Platform 4.19 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.19 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.19"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18217"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.19"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.19"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "unbound: Unbound Cache poisoning"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.19"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-22T06:20:41+00:00",
"details": "For OpenShift Container Platform 4.19 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.19 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.19"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18217"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.19"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.19"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Paul Holzinger"
],
"organization": "Red Hat",
"summary": "This issue was discovered by Red Hat."
}
],
"cve": "CVE-2025-9566",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-09-04T15:45:46.448000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2393152"
}
],
"notes": [
{
"category": "description",
"text": "There\u0027s a vulnerability in podman where an attacker may use the kube play command to overwrite host files when the kube file container a Secrete or a ConfigMap volume mount and such volume contains a symbolic link to a host file path. In a successful attack, the attacker can only control the target file to be overwritten but not the content to be written into the file.\n\nBinary-Affected: podman\nUpstream-version-introduced: v4.0.0\nUpstream-version-fixed: v5.6.1",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "podman: Podman kube play command may overwrite host files",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having the Important severity. This happens because of the consequences of an successful attack and the low complexity (AC:L) on exploiting this vulnerability. Although the attacker cannot control the content written to the target file, depending on which file was targeted, the exploitation of this flaw may lead sensitive data corruption (I:H) and leading the system to crash resulting in a Denial of Service attack (A:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.19"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-9566"
},
{
"category": "external",
"summary": "RHBZ#2393152",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2393152"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-9566",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9566"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-9566",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-9566"
}
],
"release_date": "2025-09-04T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-22T06:20:41+00:00",
"details": "For OpenShift Container Platform 4.19 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.19 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.19"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18217"
},
{
"category": "workaround",
"details": "Red Hat advises to not run the podman kube play command with untrusted Kubernetes YAML file as input, additionally review the Kubernetes YAML file before running it through podman may help to catch maliciously crafted secretes or volumes that may be used to exploit this vulnerability.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.19"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.1,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.19"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "podman: Podman kube play command may overwrite host files"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.19"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-22T06:20:41+00:00",
"details": "For OpenShift Container Platform 4.19 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.19 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.19"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18217"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.19"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.19"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Container Platform 4.19"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-22T06:20:41+00:00",
"details": "For OpenShift Container Platform 4.19 see the following documentation, which will be updated shortly for this release, for important instructions on how to upgrade your cluster and fully apply this asynchronous errata update:\n\nhttps://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html/release_notes/\n\nYou may download the oc tool and use it to inspect release image metadata for x86_64, s390x, ppc64le, and aarch64 architectures. The image digests may be found at https://quay.io/repository/openshift-release-dev/ocp-release?tab=tags.\n\nThe sha values for the release are as follows:\n\n (For x86_64 architecture)\n The image digest is {x864_DIGEST}\n\n (For s390x architecture)\n The image digest is {s390x_DIGEST}\n\n (For ppc64le architecture)\n The image digest is {ppc64le_DIGEST}\n\n (For aarch64 architecture)\n The image digest is {aarch64_DIGEST}\n\nAll OpenShift Container Platform 4.19 users are advised to upgrade to these updated packages and images when they are available in the appropriate release channel. To check for available updates, use the OpenShift CLI (oc) or web console. Instructions for upgrading a cluster are available at https://docs.redhat.com/en/documentation/openshift_container_platform/4.19/html-single/updating_clusters/index#updating-cluster-cli.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.19"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18217"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"Red Hat OpenShift Container Platform 4.19"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Container Platform 4.19"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:15827
Vulnerability from csaf_redhat
Published
2025-09-15 15:13
Modified
2025-10-30 06:44
Summary
Red Hat Security Advisory: updated web-terminal/tooling container image
Notes
Topic
Updated web-terminal/tooling container image is now available for Red Hat Web Terminal 1.12 on RHEL 9.
Details
The Red Hat Web Terminal 1.11 on RHEL 9 web-terminal-tooling container image has been updated to fix the following important CVEs: CVE-2025-5914, CVE-2025-49794, CVE-2025-49796, CVE-2025-6020, CVE-2025-48384, CVE-2025-48385, CVE-2025-7425, CVE-2025-6965, CVE-2025-8941.
Users of web-terminal/tooling container images are advised to upgrade to this updated image, which contain patches to correct security issues. Users of these images are also encouraged to rebuild all container images that depend on these images.
You can find images updated by this advisory in Red Hat Container Catalog (see References).
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated web-terminal/tooling container image is now available for Red Hat Web Terminal 1.12 on RHEL 9.",
"title": "Topic"
},
{
"category": "general",
"text": "The Red Hat Web Terminal 1.11 on RHEL 9 web-terminal-tooling container image has been updated to fix the following important CVEs: CVE-2025-5914, CVE-2025-49794, CVE-2025-49796, CVE-2025-6020, CVE-2025-48384, CVE-2025-48385, CVE-2025-7425, CVE-2025-6965, CVE-2025-8941.\n\nUsers of web-terminal/tooling container images are advised to upgrade to this updated image, which contain patches to correct security issues. Users of these images are also encouraged to rebuild all container images that depend on these images.\n\nYou can find images updated by this advisory in Red Hat Container Catalog (see References).",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:15827",
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "2372512",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372512"
},
{
"category": "external",
"summary": "2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "2388220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388220"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_15827.json"
}
],
"title": "Red Hat Security Advisory: updated web-terminal/tooling container image",
"tracking": {
"current_release_date": "2025-10-30T06:44:03+00:00",
"generator": {
"date": "2025-10-30T06:44:03+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:15827",
"initial_release_date": "2025-09-15T15:13:16+00:00",
"revision_history": [
{
"date": "2025-09-15T15:13:16+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-15T15:13:16+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:44:03+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Web Terminal 1.12 on RHEL 9",
"product": {
"name": "Red Hat Web Terminal 1.12 on RHEL 9",
"product_id": "9Base-WebTerminal-1.12",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:webterminal:1.12::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat Web Terminal"
},
{
"branches": [
{
"category": "product_version",
"name": "web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64",
"product": {
"name": "web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64",
"product_id": "web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64",
"product_identification_helper": {
"purl": "pkg:oci/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413?arch=amd64\u0026repository_url=registry.redhat.io/web-terminal/web-terminal-tooling-rhel9\u0026tag=1.12-4"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64 as a component of Red Hat Web Terminal 1.12 on RHEL 9",
"product_id": "9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
},
"product_reference": "web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64",
"relates_to_product_reference": "9Base-WebTerminal-1.12"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-5914",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2025-06-06T17:58:25.491000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370861"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as Important because it allows a local attacker with limited privileges to trigger a double-free in libarchive\u0027s RAR parser by providing a specially crafted RAR archive. Successful exploitation could result in code execution or application crashes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5914"
},
{
"category": "external",
"summary": "RHBZ#2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2598",
"url": "https://github.com/libarchive/libarchive/pull/2598"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0",
"url": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0"
}
],
"release_date": "2025-05-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c"
},
{
"acknowledgments": [
{
"names": [
"Olivier BAL-PETRE"
],
"organization": "ANSSI - French Cybersecurity Agency"
}
],
"cve": "CVE-2025-6020",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-12T16:33:01.214000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372512"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local users to elevate their privileges to root via multiple symlink attacks and race conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "linux-pam: Linux-pam directory Traversal",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in pam_namespace marked as Important rather than Moderate due to its direct impact on privilege boundaries and the ease of exploitation in common configurations. By leveraging symlink attacks or race conditions in polyinstantiated directories under their control, unprivileged local users can escalate to root, compromising the entire system. Since pam_namespace is often used in multi-user environments (e.g., shared systems, terminal servers, containers), a misconfigured or partially protected setup becomes a single point of failure. The attack does not require special capabilities or kernel-level exploits\u2014just timing and control over certain paths\u2014making it both reliable and low-barrier. Moreover, privilege escalation flaws like this can be chained with other vulnerabilities to persist or evade detection, further amplifying the risk.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6020"
},
{
"category": "external",
"summary": "RHBZ#2372512",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372512"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6020"
}
],
"release_date": "2025-06-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "Disable the `pam_namespace` module if it is not essential for your environment, or carefully review and configure it to avoid operating on any directories or paths that can be influenced or controlled by unprivileged users, such as user home directories or world-writable locations like `/tmp`.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "linux-pam: Linux-pam directory Traversal"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-8941",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-08-13T12:11:55.270000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2388220"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in linux-pam. The pam_namespace module may improperly handle user-controlled paths, allowing local users to exploit symlink attacks and race conditions to elevate their privileges to root. This CVE provides a \"complete\" fix for CVE-2025-6020.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "linux-pam: Incomplete fix for CVE-2025-6020",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in pam_namespace is rated Important because it allows a local, unprivileged user to escalate privileges to root by exploiting symlink attacks or race conditions in polyinstantiated directories under their control. Successful exploitation requires only the ability to create and manipulate filesystem paths in such directories, without the need for special capabilities or kernel-level vulnerabilities. In multi-user environments\u2014such as shared systems, terminal servers, or certain container deployments, an unprotected or misconfigured pam_namespace configuration can serve as a single point of compromise. Privilege escalation flaws of this nature may also be chained with other vulnerabilities to maintain persistence or evade detection, further increasing the overall impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-8941"
},
{
"category": "external",
"summary": "RHBZ#2388220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388220"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-8941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8941"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-8941",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-8941"
}
],
"release_date": "2025-08-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "Disable the `pam_namespace` module if it is not essential for your environment, or carefully review and configure it to avoid operating on any directories or paths that can be influenced or controlled by unprivileged users, such as user home directories or world-writable locations like `/tmp`.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "linux-pam: Incomplete fix for CVE-2025-6020"
},
{
"cve": "CVE-2025-48384",
"cwe": {
"id": "CWE-59",
"name": "Improper Link Resolution Before File Access (\u0027Link Following\u0027)"
},
"discovery_date": "2025-07-08T19:00:48.297925+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378806"
}
],
"notes": [
{
"category": "description",
"text": "A line-end handling flaw was found in Git. When writing a config entry, values with a trailing carriage return (CR) are not quoted, resulting in the CR being lost when the config is read later. When initializing a submodule, if the submodule path contains a trailing CR, the altered path is read, resulting in the submodule being checked out to an incorrect location.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary code execution",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important and not Moderate flaw because it undermines Git\u2019s path and config integrity by allowing carriage return (\\r) injection to manipulate submodule checkout behavior. Git previously failed to quote config values containing trailing CR, causing the value to be misinterpreted when read back. In the context of submodules, this leads to incorrect path resolution, allowing an attacker to redirect the checkout path via a symlink to a sensitive directory like .git/modules/\u003csubmodule\u003e/hooks. If an executable post-checkout hook exists there, it could be inadvertently executed, resulting in arbitrary code execution during submodule operations. This is particularly dangerous in automated CI/CD pipelines or multi-repo projects where submodules are initialized or updated without manual inspection.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48384"
},
{
"category": "external",
"summary": "RHBZ#2378806",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378806"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48384"
},
{
"category": "external",
"summary": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384",
"url": "https://dgl.cx/2025/07/git-clone-submodule-cve-2025-48384"
},
{
"category": "external",
"summary": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89",
"url": "https://github.com/git/git/commit/05e9cd64ee23bbadcea6bcffd6660ed02b8eab89"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9",
"url": "https://github.com/git/git/security/advisories/GHSA-vwqx-4fm8-6qc9"
},
{
"category": "external",
"summary": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog",
"url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
}
],
"release_date": "2025-07-08T18:23:48.710000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "To mitigate this issue, avoid using --recurse-submodules when cloning repositories from untrusted sources; instead, clone normally and only initialize or update submodules manually after reviewing them.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.0,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "exploit_status",
"date": "2025-08-25T00:00:00+00:00",
"details": "CISA: https://www.cisa.gov/known-exploited-vulnerabilities-catalog"
},
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary code execution"
},
{
"cve": "CVE-2025-48385",
"cwe": {
"id": "CWE-88",
"name": "Improper Neutralization of Argument Delimiters in a Command (\u0027Argument Injection\u0027)"
},
"discovery_date": "2025-07-08T19:00:55.106787+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2378808"
}
],
"notes": [
{
"category": "description",
"text": "A bundled uri handling flaw was found in Git. When cloning a repository, Git knows to optionally fetch a bundle advertised by the remote server, which allows the server side to offload parts of the clone to a CDN. The Git client does not perform sufficient validation of the advertised bundles, which allows the remote side to perform protocol injection.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "git: Git arbitrary file writes",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability marked as Important rather than a Moderate flaw because it enables protocol injection at the transport layer of Git\u0027s bundle-uri mechanism, allowing a remote server to manipulate how and where data is written on the client system during a clone operation. The lack of input sanitization on user-controlled values like the URI and target path means that malformed inputs containing spaces or newlines can break protocol framing, leading to arbitrary file writes. In scenarios such as CI pipelines, developer environments, or recursive clones with submodules, an attacker can exploit this to overwrite critical files or inject malicious content, potentially achieving remote code execution (RCE).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-48385"
},
{
"category": "external",
"summary": "RHBZ#2378808",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2378808"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-48385"
},
{
"category": "external",
"summary": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655",
"url": "https://github.com/git/git/security/advisories/GHSA-m98c-vgpc-9655"
}
],
"release_date": "2025-07-08T18:23:44.405000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 8.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "git: Git arbitrary file writes"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-15T15:13:16+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:15827"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"9Base-WebTerminal-1.12:web-terminal/web-terminal-tooling-rhel9@sha256:f43507114dbba2dcb8083c107c0db8a2ffa4834d1250155496f3c23fbaf68413_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:12010
Vulnerability from csaf_redhat
Published
2025-07-28 22:12
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: sqlite security update
Notes
Topic
An update for sqlite is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for sqlite is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:12010",
"url": "https://access.redhat.com/errata/RHSA-2025:12010"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_12010.json"
}
],
"title": "Red Hat Security Advisory: sqlite security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:49+00:00",
"generator": {
"date": "2025-10-30T06:43:49+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:12010",
"initial_release_date": "2025-07-28T22:12:48+00:00",
"revision_history": [
{
"date": "2025-07-28T22:12:48+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-28T22:12:48+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:49+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:8::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "lemon-0:3.26.0-20.el8_10.aarch64",
"product": {
"name": "lemon-0:3.26.0-20.el8_10.aarch64",
"product_id": "lemon-0:3.26.0-20.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.26.0-20.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"product": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"product_id": "sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-20.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product_id": "lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-20.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-20.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product_id": "sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-20.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-20.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-20.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.26.0-20.el8_10.aarch64",
"product": {
"name": "sqlite-0:3.26.0-20.el8_10.aarch64",
"product_id": "sqlite-0:3.26.0-20.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-20.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"product": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"product_id": "sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-20.el8_10?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"product": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"product_id": "sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-20.el8_10?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "lemon-0:3.26.0-20.el8_10.ppc64le",
"product": {
"name": "lemon-0:3.26.0-20.el8_10.ppc64le",
"product_id": "lemon-0:3.26.0-20.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.26.0-20.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"product": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"product_id": "sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-20.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product_id": "lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-20.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-20.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product_id": "sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-20.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-20.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-20.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.26.0-20.el8_10.ppc64le",
"product": {
"name": "sqlite-0:3.26.0-20.el8_10.ppc64le",
"product_id": "sqlite-0:3.26.0-20.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-20.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"product": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"product_id": "sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-20.el8_10?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"product": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"product_id": "sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-20.el8_10?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "lemon-0:3.26.0-20.el8_10.x86_64",
"product": {
"name": "lemon-0:3.26.0-20.el8_10.x86_64",
"product_id": "lemon-0:3.26.0-20.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.26.0-20.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"product": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"product_id": "sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-20.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product_id": "lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-20.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-20.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product_id": "sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-20.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-20.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-20.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.26.0-20.el8_10.x86_64",
"product": {
"name": "sqlite-0:3.26.0-20.el8_10.x86_64",
"product_id": "sqlite-0:3.26.0-20.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-20.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"product": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"product_id": "sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-20.el8_10?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"product": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"product_id": "sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-20.el8_10?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "lemon-0:3.26.0-20.el8_10.s390x",
"product": {
"name": "lemon-0:3.26.0-20.el8_10.s390x",
"product_id": "lemon-0:3.26.0-20.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.26.0-20.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"product": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"product_id": "sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-20.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"product": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"product_id": "lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-20.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-20.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"product_id": "sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-20.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-20.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-20.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.26.0-20.el8_10.s390x",
"product": {
"name": "sqlite-0:3.26.0-20.el8_10.s390x",
"product_id": "sqlite-0:3.26.0-20.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-20.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-20.el8_10.s390x",
"product": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.s390x",
"product_id": "sqlite-devel-0:3.26.0-20.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-20.el8_10?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-20.el8_10.s390x",
"product": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.s390x",
"product_id": "sqlite-libs-0:3.26.0-20.el8_10.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-20.el8_10?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-20.el8_10.src",
"product": {
"name": "sqlite-0:3.26.0-20.el8_10.src",
"product_id": "sqlite-0:3.26.0-20.el8_10.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-20.el8_10?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-20.el8_10.i686",
"product": {
"name": "sqlite-0:3.26.0-20.el8_10.i686",
"product_id": "sqlite-0:3.26.0-20.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-20.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-20.el8_10.i686",
"product": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.i686",
"product_id": "sqlite-devel-0:3.26.0-20.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-20.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-20.el8_10.i686",
"product": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.i686",
"product_id": "sqlite-libs-0:3.26.0-20.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-20.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"product": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"product_id": "sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-20.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"product": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"product_id": "lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-20.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-20.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"product_id": "sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-20.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-20.el8_10?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-20.el8_10?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-doc-0:3.26.0-20.el8_10.noarch",
"product": {
"name": "sqlite-doc-0:3.26.0-20.el8_10.noarch",
"product_id": "sqlite-doc-0:3.26.0-20.el8_10.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-doc@3.26.0-20.el8_10?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "lemon-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "lemon-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "lemon-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "lemon-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-20.el8_10.src as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.src"
},
"product_reference": "sqlite-0:3.26.0-20.el8_10.src",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-devel-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-20.el8_10.noarch as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-doc-0:3.26.0-20.el8_10.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-20.el8_10.noarch",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-libs-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux AppStream (v. 8)",
"product_id": "AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "AppStream-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "lemon-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "lemon-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "lemon-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "lemon-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-20.el8_10.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.src"
},
"product_reference": "sqlite-0:3.26.0-20.el8_10.src",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-devel-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-20.el8_10.noarch as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-doc-0:3.26.0-20.el8_10.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-20.el8_10.noarch",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-libs-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64",
"relates_to_product_reference": "BaseOS-8.10.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-doc-0:3.26.0-20.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-doc-0:3.26.0-20.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-28T22:12:48+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-doc-0:3.26.0-20.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-doc-0:3.26.0-20.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:12010"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-doc-0:3.26.0-20.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-doc-0:3.26.0-20.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.src",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-doc-0:3.26.0-20.el8_10.noarch",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"AppStream-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:lemon-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.src",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-analyzer-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-debugsource-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-devel-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-doc-0:3.26.0-20.el8_10.noarch",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-libs-debuginfo-0:3.26.0-20.el8_10.x86_64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.aarch64",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.i686",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.ppc64le",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.s390x",
"BaseOS-8.10.0.Z.MAIN.EUS:sqlite-tcl-debuginfo-0:3.26.0-20.el8_10.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:12036
Vulnerability from csaf_redhat
Published
2025-07-29 08:00
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: sqlite security update
Notes
Topic
An update for sqlite is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for sqlite is now available for Red Hat Enterprise Linux 9.4 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:12036",
"url": "https://access.redhat.com/errata/RHSA-2025:12036"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_12036.json"
}
],
"title": "Red Hat Security Advisory: sqlite security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:51+00:00",
"generator": {
"date": "2025-10-30T06:43:51+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:12036",
"initial_release_date": "2025-07-29T08:00:29+00:00",
"revision_history": [
{
"date": "2025-07-29T08:00:29+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-29T08:00:29+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:51+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product": {
"name": "Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_eus:9.4::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:9.4::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-7.el9_4.1.aarch64",
"product": {
"name": "sqlite-0:3.34.1-7.el9_4.1.aarch64",
"product_id": "sqlite-0:3.34.1-7.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-7.el9_4.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"product": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"product_id": "sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-7.el9_4.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"product": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"product_id": "sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-7.el9_4.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product_id": "lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-7.el9_4.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-7.el9_4.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product_id": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-7.el9_4.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-7.el9_4.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-7.el9_4.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-7.el9_4.1?arch=aarch64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"product": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"product_id": "sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-7.el9_4.1?arch=aarch64"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"product": {
"name": "sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"product_id": "sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-7.el9_4.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"product": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"product_id": "sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-7.el9_4.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"product": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"product_id": "sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-7.el9_4.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product_id": "lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-7.el9_4.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-7.el9_4.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product_id": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-7.el9_4.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-7.el9_4.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-7.el9_4.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-7.el9_4.1?arch=ppc64le"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"product": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"product_id": "sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-7.el9_4.1?arch=ppc64le"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-7.el9_4.1.i686",
"product": {
"name": "sqlite-0:3.34.1-7.el9_4.1.i686",
"product_id": "sqlite-0:3.34.1-7.el9_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-7.el9_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"product": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"product_id": "sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-7.el9_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"product": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"product_id": "sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-7.el9_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product_id": "lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-7.el9_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-7.el9_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product_id": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-7.el9_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-7.el9_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-7.el9_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-7.el9_4.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"product": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"product_id": "sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-7.el9_4.1?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-7.el9_4.1.x86_64",
"product": {
"name": "sqlite-0:3.34.1-7.el9_4.1.x86_64",
"product_id": "sqlite-0:3.34.1-7.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-7.el9_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"product": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"product_id": "sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-7.el9_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"product": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"product_id": "sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-7.el9_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product_id": "lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-7.el9_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-7.el9_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product_id": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-7.el9_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-7.el9_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-7.el9_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-7.el9_4.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"product": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"product_id": "sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-7.el9_4.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-7.el9_4.1.s390x",
"product": {
"name": "sqlite-0:3.34.1-7.el9_4.1.s390x",
"product_id": "sqlite-0:3.34.1-7.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-7.el9_4.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"product": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"product_id": "sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.34.1-7.el9_4.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"product": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"product_id": "sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.34.1-7.el9_4.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product_id": "lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.34.1-7.el9_4.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product_id": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.34.1-7.el9_4.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product_id": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.34.1-7.el9_4.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product_id": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.34.1-7.el9_4.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product_id": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.34.1-7.el9_4.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product_id": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tools-debuginfo@3.34.1-7.el9_4.1?arch=s390x"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"product": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"product_id": "sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.34.1-7.el9_4.1?arch=s390x"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.34.1-7.el9_4.1.src",
"product": {
"name": "sqlite-0:3.34.1-7.el9_4.1.src",
"product_id": "sqlite-0:3.34.1-7.el9_4.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.34.1-7.el9_4.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-7.el9_4.1.src as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.src"
},
"product_reference": "sqlite-0:3.34.1-7.el9_4.1.src",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux AppStream EUS (v.9.4)",
"product_id": "AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "AppStream-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-7.el9_4.1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.src"
},
"product_reference": "sqlite-0:3.34.1-7.el9_4.1.src",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v.9.4)",
"product_id": "BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
},
"product_reference": "sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"relates_to_product_reference": "BaseOS-9.4.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.src",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-29T08:00:29+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.src",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:12036"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.src",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.src",
"AppStream-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"AppStream-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:lemon-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.src",
"BaseOS-9.4.0.Z.EUS:sqlite-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-analyzer-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-debugsource-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-devel-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-libs-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-tcl-debuginfo-0:3.34.1-7.el9_4.1.x86_64",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.aarch64",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.i686",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.ppc64le",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.s390x",
"BaseOS-9.4.0.Z.EUS:sqlite-tools-debuginfo-0:3.34.1-7.el9_4.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:12901
Vulnerability from csaf_redhat
Published
2025-08-05 06:41
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: sqlite security update
Notes
Topic
An update for sqlite is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for sqlite is now available for Red Hat Enterprise Linux 8.2 Advanced Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "SQLite is a C library that implements an SQL database engine. A large subset of SQL92 is supported. A complete database is stored in a single disk file. The API is designed for convenience and ease of use. Applications that link against SQLite can enjoy the power and flexibility of an SQL database without the administrative hassles of supporting a separate database server.\n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:12901",
"url": "https://access.redhat.com/errata/RHSA-2025:12901"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_12901.json"
}
],
"title": "Red Hat Security Advisory: sqlite security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:53+00:00",
"generator": {
"date": "2025-10-30T06:43:53+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:12901",
"initial_release_date": "2025-08-05T06:41:18+00:00",
"revision_history": [
{
"date": "2025-08-05T06:41:18+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-08-05T06:41:18+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:53+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product": {
"name": "Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_aus:8.2::appstream"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_aus:8.2::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "lemon-0:3.26.0-6.el8_2.1.x86_64",
"product": {
"name": "lemon-0:3.26.0-6.el8_2.1.x86_64",
"product_id": "lemon-0:3.26.0-6.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon@3.26.0-6.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"product": {
"name": "sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"product_id": "sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-6.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product": {
"name": "lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product_id": "lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-6.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-6.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product_id": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-6.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-6.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-6.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-0:3.26.0-6.el8_2.1.x86_64",
"product": {
"name": "sqlite-0:3.26.0-6.el8_2.1.x86_64",
"product_id": "sqlite-0:3.26.0-6.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-6.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"product": {
"name": "sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"product_id": "sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-6.el8_2.1?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"product": {
"name": "sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"product_id": "sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-6.el8_2.1?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-6.el8_2.1.src",
"product": {
"name": "sqlite-0:3.26.0-6.el8_2.1.src",
"product_id": "sqlite-0:3.26.0-6.el8_2.1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-6.el8_2.1?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-0:3.26.0-6.el8_2.1.i686",
"product": {
"name": "sqlite-0:3.26.0-6.el8_2.1.i686",
"product_id": "sqlite-0:3.26.0-6.el8_2.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite@3.26.0-6.el8_2.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"product": {
"name": "sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"product_id": "sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-devel@3.26.0-6.el8_2.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"product": {
"name": "sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"product_id": "sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs@3.26.0-6.el8_2.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"product": {
"name": "sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"product_id": "sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debugsource@3.26.0-6.el8_2.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product": {
"name": "lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product_id": "lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/lemon-debuginfo@3.26.0-6.el8_2.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product_id": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-analyzer-debuginfo@3.26.0-6.el8_2.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product": {
"name": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product_id": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-debuginfo@3.26.0-6.el8_2.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product": {
"name": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product_id": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-libs-debuginfo@3.26.0-6.el8_2.1?arch=i686"
}
}
},
{
"category": "product_version",
"name": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product_id": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-tcl-debuginfo@3.26.0-6.el8_2.1?arch=i686"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"product": {
"name": "sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"product_id": "sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/sqlite-doc@3.26.0-6.el8_2.1?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:lemon-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "lemon-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-6.el8_2.1.src as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.src"
},
"product_reference": "sqlite-0:3.26.0-6.el8_2.1.src",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-6.el8_2.1.noarch as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-doc-0:3.26.0-6.el8_2.1.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux AppStream AUS (v. 8.2)",
"product_id": "AppStream-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "AppStream-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:lemon-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "lemon-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-6.el8_2.1.src as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.src"
},
"product_reference": "sqlite-0:3.26.0-6.el8_2.1.src",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-devel-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-doc-0:3.26.0-6.el8_2.1.noarch as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-doc-0:3.26.0-6.el8_2.1.noarch"
},
"product_reference": "sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64 as a component of Red Hat Enterprise Linux BaseOS AUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
},
"product_reference": "sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.AUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-8.2.0.Z.AUS:lemon-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.src",
"AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:lemon-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.src",
"BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-05T06:41:18+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-8.2.0.Z.AUS:lemon-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.src",
"AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:lemon-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.src",
"BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:12901"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-8.2.0.Z.AUS:lemon-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.src",
"AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:lemon-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.src",
"BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-8.2.0.Z.AUS:lemon-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.src",
"AppStream-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"AppStream-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"AppStream-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"AppStream-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:lemon-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:lemon-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.src",
"BaseOS-8.2.0.Z.AUS:sqlite-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-analyzer-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-debugsource-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-devel-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-doc-0:3.26.0-6.el8_2.1.noarch",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-libs-debuginfo-0:3.26.0-6.el8_2.1.x86_64",
"BaseOS-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.i686",
"BaseOS-8.2.0.Z.AUS:sqlite-tcl-debuginfo-0:3.26.0-6.el8_2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
rhsa-2025:18219
Vulnerability from csaf_redhat
Published
2025-10-16 08:41
Modified
2025-10-30 05:42
Summary
Red Hat Security Advisory: cert-manager Operator for Red Hat OpenShift 1.16.0
Notes
Topic
cert-manager Operator for Red Hat OpenShift 1.16.0
Details
The cert-manager Operator for Red Hat OpenShift builds on top of Kubernetes, introducing certificate authorities
and certificates as first-class resource types in the Kubernetes API. This makes it possible to provide
certificates-as-a-service to developers working within your Kubernetes cluster.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "cert-manager Operator for Red Hat OpenShift 1.16.0",
"title": "Topic"
},
{
"category": "general",
"text": "The cert-manager Operator for Red Hat OpenShift builds on top of Kubernetes, introducing certificate authorities\nand certificates as first-class resource types in the Kubernetes API. This makes it possible to provide\ncertificates-as-a-service to developers working within your Kubernetes cluster.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:18219",
"url": "https://access.redhat.com/errata/RHSA-2025:18219"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2024-12718",
"url": "https://access.redhat.com/security/cve/CVE-2024-12718"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-4138",
"url": "https://access.redhat.com/security/cve/CVE-2025-4138"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-4517",
"url": "https://access.redhat.com/security/cve/CVE-2025-4517"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-49794",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-49796",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-5914",
"url": "https://access.redhat.com/security/cve/CVE-2025-5914"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-6020",
"url": "https://access.redhat.com/security/cve/CVE-2025-6020"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-6965",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-7425",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-8941",
"url": "https://access.redhat.com/security/cve/CVE-2025-8941"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "external",
"summary": "https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html",
"url": "https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_18219.json"
}
],
"title": "Red Hat Security Advisory: cert-manager Operator for Red Hat OpenShift 1.16.0",
"tracking": {
"current_release_date": "2025-10-30T05:42:53+00:00",
"generator": {
"date": "2025-10-30T05:42:53+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:18219",
"initial_release_date": "2025-10-16T08:41:21+00:00",
"revision_history": [
{
"date": "2025-10-16T08:41:21+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-10-16T08:41:31+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T05:42:53+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "cert-manager operator for Red Hat OpenShift 1.16",
"product": {
"name": "cert-manager operator for Red Hat OpenShift 1.16",
"product_id": "cert-manager operator for Red Hat OpenShift 1.16",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:cert_manager:1.16::el9"
}
}
}
],
"category": "product_family",
"name": "cert-manager operator for Red Hat OpenShift"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256%3A1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b?arch=amd64\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=v1.16.5-1760515757"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256%3A8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3?arch=amd64\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=v1.16.5-1760509690"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256%3Aec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16?arch=s390x\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=v1.16.5-1760515757"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256%3A691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07?arch=s390x\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=v1.16.5-1760509690"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256%3A330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323?arch=ppc64le\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=v1.16.5-1760515757"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256%3A2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340?arch=ppc64le\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=v1.16.5-1760509690"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-rhel9@sha256%3Adf852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2?arch=arm64\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=v1.16.5-1760515757"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"product": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"product_id": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"product_identification_helper": {
"purl": "pkg:oci/jetstack-cert-manager-acmesolver-rhel9@sha256%3A768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184?arch=arm64\u0026repository_url=registry.redhat.io/cert-manager\u0026tag=v1.16.5-1760509690"
}
}
}
],
"category": "architecture",
"name": "arm64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le as a component of cert-manager operator for Red Hat OpenShift 1.16",
"product_id": "cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x as a component of cert-manager operator for Red Hat OpenShift 1.16",
"product_id": "cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64 as a component of cert-manager operator for Red Hat OpenShift 1.16",
"product_id": "cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64 as a component of cert-manager operator for Red Hat OpenShift 1.16",
"product_id": "cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64 as a component of cert-manager operator for Red Hat OpenShift 1.16",
"product_id": "cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le as a component of cert-manager operator for Red Hat OpenShift 1.16",
"product_id": "cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64 as a component of cert-manager operator for Red Hat OpenShift 1.16",
"product_id": "cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.16"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x as a component of cert-manager operator for Red Hat OpenShift 1.16",
"product_id": "cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
},
"product_reference": "registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x",
"relates_to_product_reference": "cert-manager operator for Red Hat OpenShift 1.16"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2024-12718",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-03T14:00:57.613538+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370013"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in CPython\u0027s tarfile module. This vulnerability allows modification of file metadata, such as timestamps or permissions, outside the intended extraction directory via maliciously crafted tar archives using the filter=\"data\" or filter=\"tar\" extraction filters.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cpython: python: Bypass extraction filter to modify file metadata outside extraction directory",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this vulnerability was lowered due to the fact that successful exploitation requires the attacker to convince a privileged user or process to extract a malicious tar file. Since tar file extraction typically occurs in trusted contexts or with elevated privileges, the impact is reduced by the requirement of such access.\n\nVersions of python36:3.6/python36 as shipped with Red Hat Enterprise Linux 8 are marked as \u0027Not affected\u0027 as they just provide \"symlinks\" to the main python3 component, which provides the actual interpreter of the Python programming language.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"known_not_affected": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2024-12718"
},
{
"category": "external",
"summary": "RHBZ#2370013",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370013"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2024-12718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12718"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2024-12718",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-12718"
},
{
"category": "external",
"summary": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f",
"url": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a",
"url": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a",
"url": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/127987",
"url": "https://github.com/python/cpython/issues/127987"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/135034",
"url": "https://github.com/python/cpython/issues/135034"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/135037",
"url": "https://github.com/python/cpython/pull/135037"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"
}
],
"release_date": "2025-06-03T12:59:10.908000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-16T08:41:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18219"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "cpython: python: Bypass extraction filter to modify file metadata outside extraction directory"
},
{
"cve": "CVE-2025-4138",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-12T09:03:58.434950+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372426"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the Python tarfile module. This vulnerability allows attackers to bypass extraction filters, enabling symlink targets to escape the destination directory and allowing unauthorized modification of file metadata via the use of TarFile.extract() or TarFile.extractall() with the filter= parameter set to \"data\" or \"tar\".",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "Versions of python36:3.6/python36 as shipped with Red Hat Enterprise Linux 8 are marked as \u0027Not affected\u0027 as they just provide \"symlinks\" to the main python3 component, which provides the actual interpreter of the Python programming language.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"known_not_affected": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4138"
},
{
"category": "external",
"summary": "RHBZ#2372426",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372426"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4138"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4138",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4138"
},
{
"category": "external",
"summary": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f",
"url": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a",
"url": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a",
"url": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/135034",
"url": "https://github.com/python/cpython/issues/135034"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/135037",
"url": "https://github.com/python/cpython/pull/135037"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"
}
],
"release_date": "2025-06-03T12:59:02.717000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-16T08:41:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18219"
},
{
"category": "workaround",
"details": "Red Hat recommends upgrading to a fixed release of Python as soon as one is available. This vulnerability can be mitigated by rejecting links inside tarfiles that use relative references to the parent directory. The upstream advisory provides this example code:\n\n\u0027\u0027\u0027\n# Avoid insecure segments in link names.\nfor member in tar.getmembers():\n if not member.islnk():\n continue\n if os.pardir in os.path.split(member.linkname):\n raise OSError(\"Tarfile with insecure segment (\u0027..\u0027) in linkname\")\n\n# Now safe to extract members with the data filter.\ntar.extractall(filter=\"data\")\n\u0027\u0027\u0027",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "cpython: python: Bypassing extraction filter to create symlinks to arbitrary targets outside extraction directory"
},
{
"cve": "CVE-2025-4517",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-03T14:01:12.271192+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370016"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in the CPython tarfile module. This vulnerability allows arbitrary filesystem writes outside the extraction directory via extracting untrusted tar archives using the TarFile.extractall() or TarFile.extract() methods with the extraction filter parameter set to \"data\" or \"tar\".",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python: cpython: Arbitrary writes via tarfile realpath overflow",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The severity of this vulnerability was lowered due to the fact that successful exploitation requires the attacker to convince a privileged user or process to extract a malicious tar file. Since tar file extraction typically occurs in trusted contexts or with elevated privileges, the impact is reduced by the requirement of such access.\n\nVersions of python36:3.6/python36 as shipped with Red Hat Enterprise Linux 8 are marked as \u0027Not affected\u0027 as they just provide \"symlinks\" to the main python3 component, which provides the actual interpreter of the Python programming language.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"known_not_affected": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-4517"
},
{
"category": "external",
"summary": "RHBZ#2370016",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370016"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-4517",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4517"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-4517",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-4517"
},
{
"category": "external",
"summary": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f",
"url": "https://gist.github.com/sethmlarson/52398e33eff261329a0180ac1d54f42f"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a",
"url": "https://github.com/python/cpython/commit/3612d8f51741b11f36f8fb0494d79086bac9390a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a",
"url": "https://github.com/python/cpython/commit/9e0ac76d96cf80b49055f6d6b9a6763fb9215c2a"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/issues/135034",
"url": "https://github.com/python/cpython/issues/135034"
},
{
"category": "external",
"summary": "https://github.com/python/cpython/pull/135037",
"url": "https://github.com/python/cpython/pull/135037"
},
{
"category": "external",
"summary": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/",
"url": "https://mail.python.org/archives/list/security-announce@python.org/thread/MAXIJJCUUMCL7ATZNDVEGGHUMQMUUKLG/"
}
],
"release_date": "2025-06-03T12:58:50.352000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-16T08:41:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18219"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:L",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "python: cpython: Arbitrary writes via tarfile realpath overflow"
},
{
"cve": "CVE-2025-5914",
"cwe": {
"id": "CWE-415",
"name": "Double Free"
},
"discovery_date": "2025-06-06T17:58:25.491000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2370861"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability has been identified in the libarchive library, specifically within the archive_read_format_rar_seek_data() function. This flaw involves an integer overflow that can ultimately lead to a double-free condition. Exploiting a double-free vulnerability can result in memory corruption, enabling an attacker to execute arbitrary code or cause a denial-of-service condition.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has rated this vulnerability as Important because it allows a local attacker with limited privileges to trigger a double-free in libarchive\u0027s RAR parser by providing a specially crafted RAR archive. Successful exploitation could result in code execution or application crashes.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"known_not_affected": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-5914"
},
{
"category": "external",
"summary": "RHBZ#2370861",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2370861"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-5914"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/pull/2598",
"url": "https://github.com/libarchive/libarchive/pull/2598"
},
{
"category": "external",
"summary": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0",
"url": "https://github.com/libarchive/libarchive/releases/tag/v3.8.0"
}
],
"release_date": "2025-05-20T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-16T08:41:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18219"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.3,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libarchive: Double free at archive_read_format_rar_seek_data() in archive_read_support_format_rar.c"
},
{
"acknowledgments": [
{
"names": [
"Olivier BAL-PETRE"
],
"organization": "ANSSI - French Cybersecurity Agency"
}
],
"cve": "CVE-2025-6020",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-06-12T16:33:01.214000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372512"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in linux-pam. The module pam_namespace may use access user-controlled paths without proper protection, allowing local users to elevate their privileges to root via multiple symlink attacks and race conditions.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "linux-pam: Linux-pam directory Traversal",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in pam_namespace marked as Important rather than Moderate due to its direct impact on privilege boundaries and the ease of exploitation in common configurations. By leveraging symlink attacks or race conditions in polyinstantiated directories under their control, unprivileged local users can escalate to root, compromising the entire system. Since pam_namespace is often used in multi-user environments (e.g., shared systems, terminal servers, containers), a misconfigured or partially protected setup becomes a single point of failure. The attack does not require special capabilities or kernel-level exploits\u2014just timing and control over certain paths\u2014making it both reliable and low-barrier. Moreover, privilege escalation flaws like this can be chained with other vulnerabilities to persist or evade detection, further amplifying the risk.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"known_not_affected": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6020"
},
{
"category": "external",
"summary": "RHBZ#2372512",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372512"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6020",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6020"
}
],
"release_date": "2025-06-17T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-16T08:41:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18219"
},
{
"category": "workaround",
"details": "Disable the `pam_namespace` module if it is not essential for your environment, or carefully review and configure it to avoid operating on any directories or paths that can be influenced or controlled by unprivileged users, such as user home directories or world-writable locations like `/tmp`.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "linux-pam: Linux-pam directory Traversal"
},
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"known_not_affected": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-16T08:41:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18219"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
},
{
"acknowledgments": [
{
"names": [
"Sergei Glazunov"
],
"organization": "Google Project Zero"
}
],
"cve": "CVE-2025-7425",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-07-10T09:37:28.172000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2379274"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in libxslt where the attribute type, atype, flags are modified in a way that corrupts internal memory management. When XSLT functions, such as the key() process, result in tree fragments, this corruption prevents the proper cleanup of ID attributes. As a result, the system may access freed memory, causing crashes or enabling attackers to trigger heap corruption.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This heap-use-after-free vulnerability in libxslt is rated Important because it can lead to memory corruption and application crashes. The flaw arises when internal attribute metadata (atype) is modified by libxslt\u0027s xsltSetSourceNodeFlags() function during processing of result tree fragments. If the flag corruption prevents proper removal of ID references, later memory cleanup routines may operate on already-freed memory. Since libxslt is commonly used in server-side XML processing, this could result in denial-of-service or potentially facilitate code execution under certain memory reuse conditions.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"known_not_affected": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-7425"
},
{
"category": "external",
"summary": "RHBZ#2379274",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2379274"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-7425"
},
{
"category": "external",
"summary": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140",
"url": "https://gitlab.gnome.org/GNOME/libxslt/-/issues/140"
}
],
"release_date": "2025-07-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-16T08:41:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18219"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:C/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxslt: Heap Use-After-Free in libxslt caused by atype corruption in xmlAttrPtr"
},
{
"cve": "CVE-2025-8941",
"cwe": {
"id": "CWE-22",
"name": "Improper Limitation of a Pathname to a Restricted Directory (\u0027Path Traversal\u0027)"
},
"discovery_date": "2025-08-13T12:11:55.270000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2388220"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in linux-pam. The pam_namespace module may improperly handle user-controlled paths, allowing local users to exploit symlink attacks and race conditions to elevate their privileges to root. This CVE provides a \"complete\" fix for CVE-2025-6020.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "linux-pam: Incomplete fix for CVE-2025-6020",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in pam_namespace is rated Important because it allows a local, unprivileged user to escalate privileges to root by exploiting symlink attacks or race conditions in polyinstantiated directories under their control. Successful exploitation requires only the ability to create and manipulate filesystem paths in such directories, without the need for special capabilities or kernel-level vulnerabilities. In multi-user environments\u2014such as shared systems, terminal servers, or certain container deployments, an unprotected or misconfigured pam_namespace configuration can serve as a single point of compromise. Privilege escalation flaws of this nature may also be chained with other vulnerabilities to maintain persistence or evade detection, further increasing the overall impact.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"known_not_affected": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-8941"
},
{
"category": "external",
"summary": "RHBZ#2388220",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2388220"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-8941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8941"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-8941",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-8941"
}
],
"release_date": "2025-08-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-16T08:41:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18219"
},
{
"category": "workaround",
"details": "Disable the `pam_namespace` module if it is not essential for your environment, or carefully review and configure it to avoid operating on any directories or paths that can be influenced or controlled by unprivileged users, such as user home directories or world-writable locations like `/tmp`.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "linux-pam: Incomplete fix for CVE-2025-6020"
},
{
"cve": "CVE-2025-49794",
"cwe": {
"id": "CWE-825",
"name": "Expired Pointer Dereference"
},
"discovery_date": "2025-06-11T21:33:43.044000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372373"
}
],
"notes": [
{
"category": "description",
"text": "A use-after-free vulnerability was found in libxml2. This issue occurs when parsing XPath elements under certain circumstances when the XML schematron has the \u003csch:name path=\"...\"/\u003e schema elements. This flaw allows a malicious actor to craft a malicious XML document used as input for libxml, resulting in the program\u0027s crash using libxml or other possible undefined behaviors.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This issue was rated with a severity impact of Important by Red Hat Product Security, as libxml can be used to parse XML coming from the network depending on how the program consumes it and uses the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"known_not_affected": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49794"
},
{
"category": "external",
"summary": "RHBZ#2372373",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372373"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49794"
}
],
"release_date": "2025-06-10T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-16T08:41:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18219"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than avoid processing untrusted XML documents before updating to the libxml version containing the fix.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Heap use after free (UAF) leads to Denial of service (DoS)"
},
{
"cve": "CVE-2025-49796",
"cwe": {
"id": "CWE-125",
"name": "Out-of-bounds Read"
},
"discovery_date": "2025-06-12T00:35:26.470000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2372385"
}
],
"notes": [
{
"category": "description",
"text": "A vulnerability was found in libxml2. Processing certain sch:name elements from the input XML file can trigger a memory corruption issue. This flaw allows an attacker to craft a malicious XML input file that can lead libxml to crash, resulting in a denial of service or other possible undefined behavior due to sensitive data being corrupted in memory.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "libxml: Type confusion leads to Denial of service (DoS)",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "The Red Hat Product Security team has evaluated this vulnerability as having an Important security impact, as libxml can be used to parse XML from the network depending on how the program consumes it using the library. Additionally, although the initial report shows a crash due to invalid memory access (A:H), other undefined issues that can present data integrity due to the application overwriting sensitive data are not discarded (I:H).",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"known_not_affected": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-49796"
},
{
"category": "external",
"summary": "RHBZ#2372385",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2372385"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-49796"
}
],
"release_date": "2025-06-11T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-10-16T08:41:21+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nThe steps to apply the upgraded images are different depending on the installation plan approval policy you used\nwhen installing the cert-manager Operator for Red Hat OpenShift.\n\n- If the approval policy is set to `Automatic`, then the Operator will be upgraded automatically when there is a\nnew version of the Operator. No further action is required to upgrade. This is the default setting.\n\n- If you changed the approval policy to `Manual`, then you must manually approve the upgrade to the Operator.\n\nSee https://docs.openshift.com/container-platform/latest/security/cert_manager_operator/index.html for additional\ninformation.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:18219"
},
{
"category": "workaround",
"details": "There\u0027s no available mitigation other than to avoid processing untrusted XML documents if the user is unable/unwilling to update the library.",
"product_ids": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.1,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H",
"version": "3.1"
},
"products": [
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:2b91440f3b71bc63e819a3def29e72b31f49878e03fbea67624de6a06925f340_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:691bfc535cb3d22962b0f6dc6fde226b3e70a5d68283ec1846396e3ee0fc7d07_s390x",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:768bd034b3d9e99e0a6c756fcd7d9ec00759c591569f25cd95cc8cb4eb449184_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-acmesolver-rhel9@sha256:8c7a1ae39e07d9a0d578e1f62df4f05ab54cefe058595077403a9d9bbd0ce8e3_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:1abdfac084e7c86e7a93a19e5cf6b54db79b903bfb7474a42200f753b29eda4b_amd64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:330e8b5ab4841a21f8f5f23cc7fb192197872f11639b12bf4b1e70831f636323_ppc64le",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:df852ad92734bc087e213e6c7075daf6d7010db4ab72919649736804e295a6a2_arm64",
"cert-manager operator for Red Hat OpenShift 1.16:registry.redhat.io/cert-manager/jetstack-cert-manager-rhel9@sha256:ec9c6b34a40da29f3ee89b361d94879025a998d34309bf3b63c555f3c225eb16_s390x"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "libxml: Type confusion leads to Denial of service (DoS)"
}
]
}
rhsa-2025:11802
Vulnerability from csaf_redhat
Published
2025-07-28 02:10
Modified
2025-10-30 06:43
Summary
Red Hat Security Advisory: nodejs:22 security update
Notes
Topic
An update for the nodejs:22 module is now available for Red Hat Enterprise Linux 9.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language.
Security Fix(es):
* sqlite: Integer Truncation in SQLite (CVE-2025-6965)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for the nodejs:22 module is now available for Red Hat Enterprise Linux 9.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Node.js is a software development platform for building fast and scalable network applications in the JavaScript programming language. \n\nSecurity Fix(es):\n\n* sqlite: Integer Truncation in SQLite (CVE-2025-6965)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:11802",
"url": "https://access.redhat.com/errata/RHSA-2025:11802"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_11802.json"
}
],
"title": "Red Hat Security Advisory: nodejs:22 security update",
"tracking": {
"current_release_date": "2025-10-30T06:43:46+00:00",
"generator": {
"date": "2025-10-30T06:43:46+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.10"
}
},
"id": "RHSA-2025:11802",
"initial_release_date": "2025-07-28T02:10:35+00:00",
"revision_history": [
{
"date": "2025-07-28T02:10:35+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-07-28T02:10:35+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-10-30T06:43:46+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product": {
"name": "Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:enterprise_linux:9::appstream"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"product": {
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.src (nodejs:22)",
"product_id": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=src\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.src (nodejs:22)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=src\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.src (nodejs:22)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=src\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-docs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"product": {
"name": "nodejs-docs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.noarch (nodejs:22)",
"product_id": "nodejs-docs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-docs@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=noarch\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"product": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.noarch (nodejs:22)",
"product_id": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-nodemon@3.0.1-1.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=noarch\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"product": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch (nodejs:22)",
"product_id": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging@2021.06-4.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=noarch\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"product": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch (nodejs:22)",
"product_id": "nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-packaging-bundler@2021.06-4.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=noarch\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product": {
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22)",
"product_id": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22)",
"product_id": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22)",
"product_id": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.16.0.2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=aarch64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.16.0.2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=aarch64\u0026epoch=3\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product": {
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22)",
"product_id": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22)",
"product_id": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22)",
"product_id": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.16.0.2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=ppc64le\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.16.0.2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=ppc64le\u0026epoch=3\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product": {
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22)",
"product_id": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22)",
"product_id": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22)",
"product_id": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.16.0.2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=s390x\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.16.0.2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=s390x\u0026epoch=3\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product": {
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22)",
"product_id": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22)",
"product_id": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debuginfo@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22)",
"product_id": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-debugsource@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product": {
"name": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22)",
"product_id": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-devel@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22)",
"product_id": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-full-i18n@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product": {
"name": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22)",
"product_id": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22)",
"product_id": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/nodejs-libs-debuginfo@22.16.0-2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22)",
"product_id": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/npm@10.9.2-1.22.16.0.2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=x86_64\u0026epoch=1\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
},
{
"category": "product_version",
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22)",
"product_id": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/v8-12.4-devel@12.4.254.21-1.22.16.0.2.module%2Bel9.6.0%2B23339%2Bd3c8acfa?arch=x86_64\u0026epoch=3\u0026rpmmod=nodejs:22:9060020250721113755:rhel9"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22"
},
"product_reference": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22"
},
"product_reference": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22"
},
"product_reference": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.src (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.src::nodejs:22"
},
"product_reference": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
},
"product_reference": "nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
},
"product_reference": "nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
},
"product_reference": "nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
},
"product_reference": "nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-docs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22"
},
"product_reference": "nodejs-docs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
},
"product_reference": "nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
},
"product_reference": "nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
},
"product_reference": "nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.src (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.src::nodejs:22"
},
"product_reference": "nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.src (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.src::nodejs:22"
},
"product_reference": "nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22"
},
"product_reference": "nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
},
"product_reference": "npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64 (nodejs:22) as a component of Red Hat Enterprise Linux AppStream (v. 9)",
"product_id": "AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
},
"product_reference": "v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"relates_to_product_reference": "AppStream-9.6.0.Z.MAIN.EUS"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"discovery_date": "2025-07-15T14:02:19.241458+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2380149"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was found in SQLite. Under specific conditions a query can be generated where the number of aggregate terms could exceed the number of columns available. This issue could lead to memory corruption and subsequent unintended behavior.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "sqlite: Integer Truncation in SQLite",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This vulnerability in SQLite is categorized as Important rather than Critical because, although it involves memory corruption, the conditions required to trigger it are relatively constrained. The flaw arises when a query causes the number of aggregate terms to exceed internal limits, leading to potential buffer overflows or memory mismanagement. However, exploitation requires the ability to craft complex SQL queries and interact with the SQLite engine in a specific manner\u2014typically through direct SQL input. There is no known evidence of arbitrary code execution, privilege escalation, or remote exploitability as a direct result of this flaw. Additionally, most SQLite deployments are embedded in applications where input is tightly controlled or sanitized.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-6965"
},
{
"category": "external",
"summary": "RHBZ#2380149",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2380149"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"category": "external",
"summary": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
}
],
"release_date": "2025-07-15T13:44:00.784000+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-07-28T02:10:35+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:11802"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "LOW",
"baseScore": 7.7,
"baseSeverity": "HIGH",
"confidentialityImpact": "LOW",
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:H/A:L",
"version": "3.1"
},
"products": [
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-debugsource-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-devel-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-docs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-full-i18n-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-libs-debuginfo-1:22.16.0-2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-nodemon-0:3.0.1-1.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.src::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:nodejs-packaging-bundler-0:2021.06-4.module+el9.6.0+23339+d3c8acfa.noarch::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:npm-1:10.9.2-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.aarch64::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.ppc64le::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.s390x::nodejs:22",
"AppStream-9.6.0.Z.MAIN.EUS:v8-12.4-devel-3:12.4.254.21-1.22.16.0.2.module+el9.6.0+23339+d3c8acfa.x86_64::nodejs:22"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "sqlite: Integer Truncation in SQLite"
}
]
}
CERTFR-2025-AVI-0756
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits VMware. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| VMware | Tanzu Platform | Tanzu Platform for Cloud Foundry isolation segment 10.2.2+LTS-T | ||
| VMware | Tanzu | Tanzu for MySQL on Cloud Foundry versions antérieures à 10.0.2 | ||
| VMware | Tanzu | Java Buildpack versions antérieures à 4.84.0 | ||
| VMware | Tanzu | Stemcells pour Ubuntu Jammy Azure Light versions antérieures à 1.894 | ||
| VMware | Tanzu Platform | Tanzu Platform for Cloud Foundry isolation segment versions antérieures à 10.0.9 | ||
| VMware | Tanzu | Tanzu Scheduler versions antérieures à 2.0.20 | ||
| VMware | Tanzu | Spring Cloud Services for VMware Tanzu versions antérieures à 3.3.9 | ||
| VMware | Tanzu | Tanzu GemFire versions antérieures à 10.1.4 | ||
| VMware | Tanzu Operations Manager | Tanzu Operations Manager versions antérieures à 3.1.2 | ||
| VMware | Tanzu Platform | Tanzu Platform for Cloud Foundry isolation segment versions antérieures à 6.0.19+LTS-T | ||
| VMware | Tanzu | Single Sign-On for VMware Tanzu Application Service versions antérieures à 1.16.12 | ||
| VMware | Tanzu | Tanzu Hub versions antérieures à 10.2.1 | ||
| VMware | Tanzu | Stemcells pour Ubuntu Jammy versions antérieures à 1.894 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Tanzu Platform for Cloud Foundry isolation segment 10.2.2+LTS-T",
"product": {
"name": "Tanzu Platform",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu for MySQL on Cloud Foundry versions ant\u00e9rieures \u00e0 10.0.2",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Java Buildpack versions ant\u00e9rieures \u00e0 4.84.0",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells pour Ubuntu Jammy Azure Light versions ant\u00e9rieures \u00e0 1.894",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Platform for Cloud Foundry isolation segment versions ant\u00e9rieures \u00e0 10.0.9",
"product": {
"name": "Tanzu Platform",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Scheduler versions ant\u00e9rieures \u00e0 2.0.20",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Spring Cloud Services for VMware Tanzu versions ant\u00e9rieures \u00e0 3.3.9",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu GemFire versions ant\u00e9rieures \u00e0 10.1.4",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Operations Manager versions ant\u00e9rieures \u00e0 3.1.2",
"product": {
"name": "Tanzu Operations Manager",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Platform for Cloud Foundry isolation segment versions ant\u00e9rieures \u00e0 6.0.19+LTS-T",
"product": {
"name": "Tanzu Platform",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Single Sign-On for VMware Tanzu Application Service versions ant\u00e9rieures \u00e0 1.16.12",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Hub versions ant\u00e9rieures \u00e0 10.2.1",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Stemcells pour Ubuntu Jammy versions ant\u00e9rieures \u00e0 1.894",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2021-44832",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44832"
},
{
"name": "CVE-2021-45105",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45105"
},
{
"name": "CVE-2021-44228",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-44228"
},
{
"name": "CVE-2013-1548",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-1548"
},
{
"name": "CVE-2015-4779",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4779"
},
{
"name": "CVE-2015-4780",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4780"
},
{
"name": "CVE-2015-4787",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4787"
},
{
"name": "CVE-2015-4790",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4790"
},
{
"name": "CVE-2015-4778",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4778"
},
{
"name": "CVE-2015-4782",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4782"
},
{
"name": "CVE-2015-4789",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4789"
},
{
"name": "CVE-2015-4764",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4764"
},
{
"name": "CVE-2015-4783",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4783"
},
{
"name": "CVE-2015-2583",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2583"
},
{
"name": "CVE-2015-4781",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4781"
},
{
"name": "CVE-2015-4776",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4776"
},
{
"name": "CVE-2015-4786",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4786"
},
{
"name": "CVE-2015-2656",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2656"
},
{
"name": "CVE-2015-4788",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4788"
},
{
"name": "CVE-2015-4785",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4785"
},
{
"name": "CVE-2015-4754",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4754"
},
{
"name": "CVE-2015-4775",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4775"
},
{
"name": "CVE-2015-4777",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4777"
},
{
"name": "CVE-2015-2640",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2640"
},
{
"name": "CVE-2015-4774",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4774"
},
{
"name": "CVE-2015-2626",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2626"
},
{
"name": "CVE-2015-2624",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2624"
},
{
"name": "CVE-2015-4784",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-4784"
},
{
"name": "CVE-2015-2654",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2654"
},
{
"name": "CVE-2017-8046",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-8046"
},
{
"name": "CVE-2018-3280",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3280"
},
{
"name": "CVE-2018-3137",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3137"
},
{
"name": "CVE-2018-3285",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3285"
},
{
"name": "CVE-2018-3182",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3182"
},
{
"name": "CVE-2018-3186",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3186"
},
{
"name": "CVE-2018-3195",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3195"
},
{
"name": "CVE-2018-3286",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3286"
},
{
"name": "CVE-2018-3170",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3170"
},
{
"name": "CVE-2018-3279",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3279"
},
{
"name": "CVE-2018-3212",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3212"
},
{
"name": "CVE-2018-3203",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3203"
},
{
"name": "CVE-2018-3145",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-3145"
},
{
"name": "CVE-2019-2530",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2530"
},
{
"name": "CVE-2019-2436",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2436"
},
{
"name": "CVE-2019-2539",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2539"
},
{
"name": "CVE-2019-2494",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2494"
},
{
"name": "CVE-2019-2535",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2535"
},
{
"name": "CVE-2019-2533",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2533"
},
{
"name": "CVE-2019-2495",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2495"
},
{
"name": "CVE-2019-2513",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2513"
},
{
"name": "CVE-2019-2536",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2536"
},
{
"name": "CVE-2019-2502",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2502"
},
{
"name": "CVE-2019-2634",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2634"
},
{
"name": "CVE-2019-2587",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2587"
},
{
"name": "CVE-2019-2584",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2584"
},
{
"name": "CVE-2019-2691",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2691"
},
{
"name": "CVE-2019-2606",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2606"
},
{
"name": "CVE-2019-2630",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2630"
},
{
"name": "CVE-2019-2624",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2624"
},
{
"name": "CVE-2019-2623",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2623"
},
{
"name": "CVE-2019-2695",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2695"
},
{
"name": "CVE-2019-2596",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2596"
},
{
"name": "CVE-2019-2580",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2580"
},
{
"name": "CVE-2019-2644",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2644"
},
{
"name": "CVE-2019-2681",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2681"
},
{
"name": "CVE-2019-2617",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2617"
},
{
"name": "CVE-2019-2636",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2636"
},
{
"name": "CVE-2019-2689",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2689"
},
{
"name": "CVE-2019-2693",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2693"
},
{
"name": "CVE-2019-2593",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2593"
},
{
"name": "CVE-2019-2625",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2625"
},
{
"name": "CVE-2019-2585",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2585"
},
{
"name": "CVE-2019-2631",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2631"
},
{
"name": "CVE-2019-2694",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2694"
},
{
"name": "CVE-2019-2620",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2620"
},
{
"name": "CVE-2019-2688",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2688"
},
{
"name": "CVE-2019-2589",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2589"
},
{
"name": "CVE-2019-2635",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2635"
},
{
"name": "CVE-2019-2626",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2626"
},
{
"name": "CVE-2019-2686",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2686"
},
{
"name": "CVE-2019-2685",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2685"
},
{
"name": "CVE-2019-2687",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2687"
},
{
"name": "CVE-2019-2607",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2607"
},
{
"name": "CVE-2019-7317",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-7317"
},
{
"name": "CVE-2019-2811",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2811"
},
{
"name": "CVE-2019-2740",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2740"
},
{
"name": "CVE-2019-2879",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2879"
},
{
"name": "CVE-2019-2808",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2808"
},
{
"name": "CVE-2019-2738",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2738"
},
{
"name": "CVE-2019-2819",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2819"
},
{
"name": "CVE-2019-2737",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2737"
},
{
"name": "CVE-2019-2814",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2814"
},
{
"name": "CVE-2019-2778",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2778"
},
{
"name": "CVE-2019-2822",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2822"
},
{
"name": "CVE-2019-2802",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2802"
},
{
"name": "CVE-2019-2803",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2803"
},
{
"name": "CVE-2019-2752",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2752"
},
{
"name": "CVE-2019-2826",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2826"
},
{
"name": "CVE-2019-2784",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2784"
},
{
"name": "CVE-2019-2789",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2789"
},
{
"name": "CVE-2019-2801",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2801"
},
{
"name": "CVE-2019-2791",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2791"
},
{
"name": "CVE-2019-2798",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2798"
},
{
"name": "CVE-2019-2796",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2796"
},
{
"name": "CVE-2019-2815",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2815"
},
{
"name": "CVE-2019-2810",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2810"
},
{
"name": "CVE-2019-2780",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2780"
},
{
"name": "CVE-2019-2758",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2758"
},
{
"name": "CVE-2019-2757",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2757"
},
{
"name": "CVE-2019-2785",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2785"
},
{
"name": "CVE-2019-2747",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2747"
},
{
"name": "CVE-2019-2741",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2741"
},
{
"name": "CVE-2019-2830",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2830"
},
{
"name": "CVE-2019-2834",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2834"
},
{
"name": "CVE-2019-2743",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2743"
},
{
"name": "CVE-2019-2739",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2739"
},
{
"name": "CVE-2019-2805",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2805"
},
{
"name": "CVE-2019-2797",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2797"
},
{
"name": "CVE-2019-2774",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2774"
},
{
"name": "CVE-2019-2795",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2795"
},
{
"name": "CVE-2019-2746",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2746"
},
{
"name": "CVE-2019-2812",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2812"
},
{
"name": "CVE-2019-2924",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2924"
},
{
"name": "CVE-2019-2914",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2914"
},
{
"name": "CVE-2019-2960",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2960"
},
{
"name": "CVE-2019-2923",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2923"
},
{
"name": "CVE-2019-2968",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2968"
},
{
"name": "CVE-2019-2993",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2993"
},
{
"name": "CVE-2019-3009",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3009"
},
{
"name": "CVE-2019-2969",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2969"
},
{
"name": "CVE-2019-3011",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3011"
},
{
"name": "CVE-2019-2967",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2967"
},
{
"name": "CVE-2019-2946",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2946"
},
{
"name": "CVE-2019-2966",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2966"
},
{
"name": "CVE-2019-2957",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2957"
},
{
"name": "CVE-2019-2948",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2948"
},
{
"name": "CVE-2019-2922",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2922"
},
{
"name": "CVE-2019-3004",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3004"
},
{
"name": "CVE-2019-2998",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2998"
},
{
"name": "CVE-2019-2911",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2911"
},
{
"name": "CVE-2019-2950",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2950"
},
{
"name": "CVE-2019-2910",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2910"
},
{
"name": "CVE-2019-3018",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3018"
},
{
"name": "CVE-2019-2974",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2974"
},
{
"name": "CVE-2019-2991",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2991"
},
{
"name": "CVE-2019-2997",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2997"
},
{
"name": "CVE-2019-2938",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2938"
},
{
"name": "CVE-2019-3003",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-3003"
},
{
"name": "CVE-2019-2982",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2982"
},
{
"name": "CVE-2019-2963",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2963"
},
{
"name": "CVE-2020-2579",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2579"
},
{
"name": "CVE-2020-2584",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2584"
},
{
"name": "CVE-2020-2577",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2577"
},
{
"name": "CVE-2020-2679",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2679"
},
{
"name": "CVE-2020-2570",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2570"
},
{
"name": "CVE-2020-2572",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2572"
},
{
"name": "CVE-2020-2627",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2627"
},
{
"name": "CVE-2020-2660",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2660"
},
{
"name": "CVE-2020-2589",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2589"
},
{
"name": "CVE-2020-2573",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2573"
},
{
"name": "CVE-2020-2686",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2686"
},
{
"name": "CVE-2020-2694",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2694"
},
{
"name": "CVE-2020-2574",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2574"
},
{
"name": "CVE-2020-2770",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2770"
},
{
"name": "CVE-2020-2925",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2925"
},
{
"name": "CVE-2020-2853",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2853"
},
{
"name": "CVE-2020-2774",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2774"
},
{
"name": "CVE-2020-2928",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2928"
},
{
"name": "CVE-2020-2897",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2897"
},
{
"name": "CVE-2020-2812",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2812"
},
{
"name": "CVE-2020-2765",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2765"
},
{
"name": "CVE-2020-2761",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2761"
},
{
"name": "CVE-2020-2790",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2790"
},
{
"name": "CVE-2020-2752",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2752"
},
{
"name": "CVE-2020-2904",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2904"
},
{
"name": "CVE-2020-2893",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2893"
},
{
"name": "CVE-2020-2760",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2760"
},
{
"name": "CVE-2020-2780",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2780"
},
{
"name": "CVE-2020-2903",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2903"
},
{
"name": "CVE-2020-2924",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2924"
},
{
"name": "CVE-2020-2806",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2806"
},
{
"name": "CVE-2020-2922",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2922"
},
{
"name": "CVE-2020-2901",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2901"
},
{
"name": "CVE-2020-2926",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2926"
},
{
"name": "CVE-2020-2923",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2923"
},
{
"name": "CVE-2020-2921",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2921"
},
{
"name": "CVE-2020-2779",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2779"
},
{
"name": "CVE-2020-2892",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2892"
},
{
"name": "CVE-2020-2896",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2896"
},
{
"name": "CVE-2020-2804",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2804"
},
{
"name": "CVE-2020-2895",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2895"
},
{
"name": "CVE-2020-2930",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2930"
},
{
"name": "CVE-2020-2814",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2814"
},
{
"name": "CVE-2020-2759",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2759"
},
{
"name": "CVE-2020-2763",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2763"
},
{
"name": "CVE-2020-14550",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14550"
},
{
"name": "CVE-2020-14567",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14567"
},
{
"name": "CVE-2020-14559",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14559"
},
{
"name": "CVE-2020-14576",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14576"
},
{
"name": "CVE-2020-14540",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14540"
},
{
"name": "CVE-2020-14547",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14547"
},
{
"name": "CVE-2020-14553",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14553"
},
{
"name": "CVE-2020-14539",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14539"
},
{
"name": "CVE-2020-14845",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14845"
},
{
"name": "CVE-2020-14799",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14799"
},
{
"name": "CVE-2020-14793",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14793"
},
{
"name": "CVE-2020-14888",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14888"
},
{
"name": "CVE-2020-14790",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14790"
},
{
"name": "CVE-2020-14789",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14789"
},
{
"name": "CVE-2020-14672",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14672"
},
{
"name": "CVE-2020-14846",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14846"
},
{
"name": "CVE-2020-14771",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14771"
},
{
"name": "CVE-2020-14873",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14873"
},
{
"name": "CVE-2020-14791",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14791"
},
{
"name": "CVE-2020-14769",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14769"
},
{
"name": "CVE-2020-14844",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14844"
},
{
"name": "CVE-2020-14809",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14809"
},
{
"name": "CVE-2020-14860",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14860"
},
{
"name": "CVE-2020-14866",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14866"
},
{
"name": "CVE-2020-14861",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14861"
},
{
"name": "CVE-2020-14773",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14773"
},
{
"name": "CVE-2020-14776",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14776"
},
{
"name": "CVE-2020-14852",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14852"
},
{
"name": "CVE-2020-14760",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14760"
},
{
"name": "CVE-2020-14870",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14870"
},
{
"name": "CVE-2020-14837",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14837"
},
{
"name": "CVE-2020-14893",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14893"
},
{
"name": "CVE-2020-14836",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14836"
},
{
"name": "CVE-2020-14829",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14829"
},
{
"name": "CVE-2020-14868",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14868"
},
{
"name": "CVE-2020-14827",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14827"
},
{
"name": "CVE-2020-14839",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14839"
},
{
"name": "CVE-2020-14777",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14777"
},
{
"name": "CVE-2020-14812",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14812"
},
{
"name": "CVE-2020-14775",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14775"
},
{
"name": "CVE-2020-14838",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14838"
},
{
"name": "CVE-2020-14869",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14869"
},
{
"name": "CVE-2020-14765",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14765"
},
{
"name": "CVE-2020-14814",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14814"
},
{
"name": "CVE-2020-14821",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14821"
},
{
"name": "CVE-2020-14830",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14830"
},
{
"name": "CVE-2020-14828",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14828"
},
{
"name": "CVE-2020-14804",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14804"
},
{
"name": "CVE-2020-14800",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14800"
},
{
"name": "CVE-2020-14891",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14891"
},
{
"name": "CVE-2020-14848",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14848"
},
{
"name": "CVE-2020-14867",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14867"
},
{
"name": "CVE-2020-14785",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14785"
},
{
"name": "CVE-2020-14794",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14794"
},
{
"name": "CVE-2020-14786",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-14786"
},
{
"name": "CVE-2020-15358",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15358"
},
{
"name": "CVE-2020-1971",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1971"
},
{
"name": "CVE-2021-2010",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2010"
},
{
"name": "CVE-2021-2001",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2001"
},
{
"name": "CVE-2021-2060",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2060"
},
{
"name": "CVE-2021-2014",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2014"
},
{
"name": "CVE-2021-2032",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2032"
},
{
"name": "CVE-2021-2036",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2036"
},
{
"name": "CVE-2021-2007",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2007"
},
{
"name": "CVE-2021-2011",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2011"
},
{
"name": "CVE-2021-2022",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2022"
},
{
"name": "CVE-2019-25013",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25013"
},
{
"name": "CVE-2021-2308",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2308"
},
{
"name": "CVE-2021-2213",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2213"
},
{
"name": "CVE-2021-2172",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2172"
},
{
"name": "CVE-2021-2293",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2293"
},
{
"name": "CVE-2021-2208",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2208"
},
{
"name": "CVE-2021-2196",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2196"
},
{
"name": "CVE-2021-2194",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2194"
},
{
"name": "CVE-2021-2298",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2298"
},
{
"name": "CVE-2021-2162",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2162"
},
{
"name": "CVE-2021-2179",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2179"
},
{
"name": "CVE-2021-2307",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2307"
},
{
"name": "CVE-2021-2217",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2217"
},
{
"name": "CVE-2021-2180",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2180"
},
{
"name": "CVE-2021-2203",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2203"
},
{
"name": "CVE-2021-2144",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2144"
},
{
"name": "CVE-2021-2226",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2226"
},
{
"name": "CVE-2021-2232",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2232"
},
{
"name": "CVE-2021-2169",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2169"
},
{
"name": "CVE-2021-2301",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2301"
},
{
"name": "CVE-2021-2202",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2202"
},
{
"name": "CVE-2021-2166",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2166"
},
{
"name": "CVE-2021-2174",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2174"
},
{
"name": "CVE-2021-2154",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2154"
},
{
"name": "CVE-2021-2193",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2193"
},
{
"name": "CVE-2021-2300",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2300"
},
{
"name": "CVE-2021-2299",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2299"
},
{
"name": "CVE-2021-2212",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2212"
},
{
"name": "CVE-2021-2178",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2178"
},
{
"name": "CVE-2021-2146",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2146"
},
{
"name": "CVE-2021-2230",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2230"
},
{
"name": "CVE-2021-2278",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2278"
},
{
"name": "CVE-2021-2164",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2164"
},
{
"name": "CVE-2021-2201",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2201"
},
{
"name": "CVE-2021-2170",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2170"
},
{
"name": "CVE-2021-2304",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2304"
},
{
"name": "CVE-2021-2160",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2160"
},
{
"name": "CVE-2021-2171",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2171"
},
{
"name": "CVE-2021-2305",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2305"
},
{
"name": "CVE-2021-2215",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2215"
},
{
"name": "CVE-2021-25214",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25214"
},
{
"name": "CVE-2012-6153",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-6153"
},
{
"name": "CVE-2020-10878",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10878"
},
{
"name": "CVE-2021-2370",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2370"
},
{
"name": "CVE-2021-2389",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2389"
},
{
"name": "CVE-2021-2444",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2444"
},
{
"name": "CVE-2021-2429",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2429"
},
{
"name": "CVE-2021-2426",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2426"
},
{
"name": "CVE-2021-2427",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2427"
},
{
"name": "CVE-2021-2339",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2339"
},
{
"name": "CVE-2021-2425",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2425"
},
{
"name": "CVE-2021-2387",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2387"
},
{
"name": "CVE-2021-2383",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2383"
},
{
"name": "CVE-2021-2372",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2372"
},
{
"name": "CVE-2021-2399",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2399"
},
{
"name": "CVE-2021-2384",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2384"
},
{
"name": "CVE-2021-2412",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2412"
},
{
"name": "CVE-2021-2441",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2441"
},
{
"name": "CVE-2021-2410",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2410"
},
{
"name": "CVE-2021-2342",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2342"
},
{
"name": "CVE-2021-2437",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2437"
},
{
"name": "CVE-2021-2417",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2417"
},
{
"name": "CVE-2021-2424",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2424"
},
{
"name": "CVE-2021-2385",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2385"
},
{
"name": "CVE-2021-2357",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2357"
},
{
"name": "CVE-2021-2352",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2352"
},
{
"name": "CVE-2021-2402",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2402"
},
{
"name": "CVE-2021-2440",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2440"
},
{
"name": "CVE-2021-2340",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2340"
},
{
"name": "CVE-2021-2390",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2390"
},
{
"name": "CVE-2021-2374",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2374"
},
{
"name": "CVE-2021-2356",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2356"
},
{
"name": "CVE-2021-2411",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2411"
},
{
"name": "CVE-2021-2418",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2418"
},
{
"name": "CVE-2021-2367",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2367"
},
{
"name": "CVE-2021-2354",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2354"
},
{
"name": "CVE-2021-2422",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2422"
},
{
"name": "CVE-2020-10543",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10543"
},
{
"name": "CVE-2020-12723",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-12723"
},
{
"name": "CVE-2020-10029",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-10029"
},
{
"name": "CVE-2021-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23337"
},
{
"name": "CVE-2020-28500",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-28500"
},
{
"name": "CVE-2019-18276",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-18276"
},
{
"name": "CVE-2021-3421",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3421"
},
{
"name": "CVE-2021-3326",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3326"
},
{
"name": "CVE-2019-2708",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-2708"
},
{
"name": "CVE-2020-27618",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-27618"
},
{
"name": "CVE-2021-35640",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35640"
},
{
"name": "CVE-2021-35626",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35626"
},
{
"name": "CVE-2021-2478",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2478"
},
{
"name": "CVE-2021-35624",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35624"
},
{
"name": "CVE-2021-35583",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35583"
},
{
"name": "CVE-2021-35628",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35628"
},
{
"name": "CVE-2021-35630",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35630"
},
{
"name": "CVE-2021-35644",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35644"
},
{
"name": "CVE-2021-2479",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2479"
},
{
"name": "CVE-2021-35638",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35638"
},
{
"name": "CVE-2021-35646",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35646"
},
{
"name": "CVE-2021-35596",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35596"
},
{
"name": "CVE-2021-35643",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35643"
},
{
"name": "CVE-2021-35637",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35637"
},
{
"name": "CVE-2021-35623",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35623"
},
{
"name": "CVE-2021-35632",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35632"
},
{
"name": "CVE-2021-35641",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35641"
},
{
"name": "CVE-2021-35604",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35604"
},
{
"name": "CVE-2021-35636",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35636"
},
{
"name": "CVE-2021-35546",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35546"
},
{
"name": "CVE-2021-35627",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35627"
},
{
"name": "CVE-2021-35625",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35625"
},
{
"name": "CVE-2021-35608",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35608"
},
{
"name": "CVE-2021-35597",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35597"
},
{
"name": "CVE-2021-35537",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35537"
},
{
"name": "CVE-2021-2481",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-2481"
},
{
"name": "CVE-2021-35622",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35622"
},
{
"name": "CVE-2021-35610",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35610"
},
{
"name": "CVE-2021-35633",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35633"
},
{
"name": "CVE-2021-35634",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35634"
},
{
"name": "CVE-2021-35629",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35629"
},
{
"name": "CVE-2021-35631",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35631"
},
{
"name": "CVE-2021-35645",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35645"
},
{
"name": "CVE-2021-35647",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35647"
},
{
"name": "CVE-2021-35612",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35612"
},
{
"name": "CVE-2021-35639",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35639"
},
{
"name": "CVE-2021-35648",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35648"
},
{
"name": "CVE-2021-35607",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35607"
},
{
"name": "CVE-2021-35602",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35602"
},
{
"name": "CVE-2021-35577",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35577"
},
{
"name": "CVE-2021-35642",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35642"
},
{
"name": "CVE-2021-35575",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35575"
},
{
"name": "CVE-2021-35635",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35635"
},
{
"name": "CVE-2021-35591",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35591"
},
{
"name": "CVE-2021-25219",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25219"
},
{
"name": "CVE-2021-3875",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3875"
},
{
"name": "CVE-2019-10744",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10744"
},
{
"name": "CVE-2022-21352",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21352"
},
{
"name": "CVE-2022-21304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21304"
},
{
"name": "CVE-2022-21254",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21254"
},
{
"name": "CVE-2022-21265",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21265"
},
{
"name": "CVE-2022-21348",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21348"
},
{
"name": "CVE-2022-21372",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21372"
},
{
"name": "CVE-2022-21245",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21245"
},
{
"name": "CVE-2022-21368",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21368"
},
{
"name": "CVE-2022-21339",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21339"
},
{
"name": "CVE-2022-21264",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21264"
},
{
"name": "CVE-2022-21297",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21297"
},
{
"name": "CVE-2022-21379",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21379"
},
{
"name": "CVE-2022-21253",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21253"
},
{
"name": "CVE-2022-21301",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21301"
},
{
"name": "CVE-2022-21378",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21378"
},
{
"name": "CVE-2022-21370",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21370"
},
{
"name": "CVE-2022-21302",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21302"
},
{
"name": "CVE-2022-21249",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21249"
},
{
"name": "CVE-2022-21344",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21344"
},
{
"name": "CVE-2022-21270",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21270"
},
{
"name": "CVE-2022-21367",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21367"
},
{
"name": "CVE-2022-21342",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21342"
},
{
"name": "CVE-2022-21362",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21362"
},
{
"name": "CVE-2022-21303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21303"
},
{
"name": "CVE-2022-21256",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21256"
},
{
"name": "CVE-2022-21358",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21358"
},
{
"name": "CVE-2022-21374",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21374"
},
{
"name": "CVE-2022-3602",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3602"
},
{
"name": "CVE-2022-2309",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2309"
},
{
"name": "CVE-2022-29824",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-29824"
},
{
"name": "CVE-2022-35737",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-35737"
},
{
"name": "CVE-2022-40303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40303"
},
{
"name": "CVE-2022-40304",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-40304"
},
{
"name": "CVE-2020-8203",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-8203"
},
{
"name": "CVE-2022-3786",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3786"
},
{
"name": "CVE-2022-2795",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2795"
},
{
"name": "CVE-2022-34903",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-34903"
},
{
"name": "CVE-2022-3515",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3515"
},
{
"name": "CVE-2022-3996",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3996"
},
{
"name": "CVE-2022-22942",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22942"
},
{
"name": "CVE-2021-4193",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4193"
},
{
"name": "CVE-2020-15366",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-15366"
},
{
"name": "CVE-2022-22965",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-22965"
},
{
"name": "CVE-2022-0213",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0213"
},
{
"name": "CVE-2022-21418",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21418"
},
{
"name": "CVE-2022-21412",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21412"
},
{
"name": "CVE-2022-21437",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21437"
},
{
"name": "CVE-2022-21478",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21478"
},
{
"name": "CVE-2022-21479",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21479"
},
{
"name": "CVE-2022-21438",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21438"
},
{
"name": "CVE-2022-21440",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21440"
},
{
"name": "CVE-2022-21451",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21451"
},
{
"name": "CVE-2022-21427",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21427"
},
{
"name": "CVE-2022-21415",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21415"
},
{
"name": "CVE-2022-21459",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21459"
},
{
"name": "CVE-2022-21460",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21460"
},
{
"name": "CVE-2022-21414",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21414"
},
{
"name": "CVE-2022-21413",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21413"
},
{
"name": "CVE-2022-21436",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21436"
},
{
"name": "CVE-2022-21435",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21435"
},
{
"name": "CVE-2022-21462",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21462"
},
{
"name": "CVE-2022-21444",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21444"
},
{
"name": "CVE-2022-21417",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21417"
},
{
"name": "CVE-2022-21457",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21457"
},
{
"name": "CVE-2022-21425",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21425"
},
{
"name": "CVE-2022-21452",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21452"
},
{
"name": "CVE-2021-20266",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20266"
},
{
"name": "CVE-2022-1292",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1292"
},
{
"name": "CVE-2022-1473",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1473"
},
{
"name": "CVE-2021-3521",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3521"
},
{
"name": "CVE-2021-4122",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-4122"
},
{
"name": "CVE-2022-2068",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-2068"
},
{
"name": "CVE-2017-7500",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7500"
},
{
"name": "CVE-2021-33574",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33574"
},
{
"name": "CVE-2017-11164",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-11164"
},
{
"name": "CVE-2022-21525",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21525"
},
{
"name": "CVE-2022-21537",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21537"
},
{
"name": "CVE-2022-21455",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21455"
},
{
"name": "CVE-2022-21534",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21534"
},
{
"name": "CVE-2022-21528",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21528"
},
{
"name": "CVE-2022-21529",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21529"
},
{
"name": "CVE-2022-21531",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21531"
},
{
"name": "CVE-2022-21515",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21515"
},
{
"name": "CVE-2022-21538",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21538"
},
{
"name": "CVE-2022-21527",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21527"
},
{
"name": "CVE-2022-21517",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21517"
},
{
"name": "CVE-2022-21539",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21539"
},
{
"name": "CVE-2022-21556",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21556"
},
{
"name": "CVE-2022-21509",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21509"
},
{
"name": "CVE-2022-21553",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21553"
},
{
"name": "CVE-2022-21530",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21530"
},
{
"name": "CVE-2022-21522",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21522"
},
{
"name": "CVE-2022-21547",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21547"
},
{
"name": "CVE-2022-21569",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21569"
},
{
"name": "CVE-2022-21526",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21526"
},
{
"name": "CVE-2021-3999",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3999"
},
{
"name": "CVE-2022-23218",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23218"
},
{
"name": "CVE-2022-23219",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-23219"
},
{
"name": "CVE-2022-27782",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27782"
},
{
"name": "CVE-2021-25220",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-25220"
},
{
"name": "CVE-2022-0396",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0396"
},
{
"name": "CVE-2022-3358",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3358"
},
{
"name": "CVE-2022-1271",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-1271"
},
{
"name": "CVE-2012-5783",
"url": "https://www.cve.org/CVERecord?id=CVE-2012-5783"
},
{
"name": "CVE-2022-21592",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21592"
},
{
"name": "CVE-2022-21617",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21617"
},
{
"name": "CVE-2022-21595",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21595"
},
{
"name": "CVE-2022-21608",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21608"
},
{
"name": "CVE-2022-21589",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21589"
},
{
"name": "CVE-2023-21863",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21863"
},
{
"name": "CVE-2023-21873",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21873"
},
{
"name": "CVE-2023-21879",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21879"
},
{
"name": "CVE-2023-21880",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21880"
},
{
"name": "CVE-2023-21869",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21869"
},
{
"name": "CVE-2023-21872",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21872"
},
{
"name": "CVE-2023-21877",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21877"
},
{
"name": "CVE-2023-21870",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21870"
},
{
"name": "CVE-2023-21887",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21887"
},
{
"name": "CVE-2023-21836",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21836"
},
{
"name": "CVE-2023-21881",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21881"
},
{
"name": "CVE-2023-21876",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21876"
},
{
"name": "CVE-2023-21840",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21840"
},
{
"name": "CVE-2023-21878",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21878"
},
{
"name": "CVE-2023-21866",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21866"
},
{
"name": "CVE-2023-21875",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21875"
},
{
"name": "CVE-2023-21865",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21865"
},
{
"name": "CVE-2023-21883",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21883"
},
{
"name": "CVE-2023-21867",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21867"
},
{
"name": "CVE-2023-21874",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21874"
},
{
"name": "CVE-2023-21871",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21871"
},
{
"name": "CVE-2023-0286",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0286"
},
{
"name": "CVE-2023-0401",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0401"
},
{
"name": "CVE-2023-0215",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0215"
},
{
"name": "CVE-2023-0217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0217"
},
{
"name": "CVE-2023-0216",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0216"
},
{
"name": "CVE-2022-4450",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4450"
},
{
"name": "CVE-2022-4415",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4415"
},
{
"name": "CVE-2023-24329",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24329"
},
{
"name": "CVE-2023-0464",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0464"
},
{
"name": "CVE-2023-21963",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21963"
},
{
"name": "CVE-2023-21977",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21977"
},
{
"name": "CVE-2023-21912",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-21912"
},
{
"name": "CVE-2023-29469",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29469"
},
{
"name": "CVE-2023-28484",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28484"
},
{
"name": "CVE-2023-20873",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-20873"
},
{
"name": "CVE-2023-20883",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-20883"
},
{
"name": "CVE-2023-27535",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27535"
},
{
"name": "CVE-2023-27538",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27538"
},
{
"name": "CVE-2023-27536",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27536"
},
{
"name": "CVE-2023-27537",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27537"
},
{
"name": "CVE-2020-1752",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-1752"
},
{
"name": "CVE-2021-35942",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35942"
},
{
"name": "CVE-2021-38604",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38604"
},
{
"name": "CVE-2020-29562",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-29562"
},
{
"name": "CVE-2021-27645",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-27645"
},
{
"name": "CVE-2023-28322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28322"
},
{
"name": "CVE-2022-46908",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-46908"
},
{
"name": "CVE-2023-28320",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28320"
},
{
"name": "CVE-2023-28321",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-28321"
},
{
"name": "CVE-2023-22053",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22053"
},
{
"name": "CVE-2023-22007",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22007"
},
{
"name": "CVE-2022-4899",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4899"
},
{
"name": "CVE-2022-25883",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-25883"
},
{
"name": "CVE-2023-40403",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40403"
},
{
"name": "CVE-2023-4911",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4911"
},
{
"name": "CVE-2023-44487",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-44487"
},
{
"name": "CVE-2016-1000027",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-1000027"
},
{
"name": "CVE-2023-35116",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35116"
},
{
"name": "CVE-2023-22097",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22097"
},
{
"name": "CVE-2023-22084",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22084"
},
{
"name": "CVE-2023-22026",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22026"
},
{
"name": "CVE-2023-22028",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22028"
},
{
"name": "CVE-2023-22015",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22015"
},
{
"name": "CVE-2023-22103",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22103"
},
{
"name": "CVE-2023-22068",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22068"
},
{
"name": "CVE-2023-22078",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22078"
},
{
"name": "CVE-2023-38546",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-38546"
},
{
"name": "CVE-2023-22059",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22059"
},
{
"name": "CVE-2023-22066",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22066"
},
{
"name": "CVE-2023-22114",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22114"
},
{
"name": "CVE-2023-22070",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22070"
},
{
"name": "CVE-2023-22032",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-22032"
},
{
"name": "CVE-2023-5363",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5363"
},
{
"name": "CVE-2023-4807",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4807"
},
{
"name": "CVE-2023-45853",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45853"
},
{
"name": "CVE-2023-5678",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5678"
},
{
"name": "CVE-2023-40217",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-40217"
},
{
"name": "CVE-2023-45803",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45803"
},
{
"name": "CVE-2021-22570",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22570"
},
{
"name": "CVE-2023-2603",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2603"
},
{
"name": "CVE-2023-2602",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2602"
},
{
"name": "CVE-2023-4527",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4527"
},
{
"name": "CVE-2023-4813",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4813"
},
{
"name": "CVE-2023-4806",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4806"
},
{
"name": "CVE-2022-48303",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48303"
},
{
"name": "CVE-2023-34055",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34055"
},
{
"name": "CVE-2023-4039",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4039"
},
{
"name": "CVE-2022-3715",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3715"
},
{
"name": "CVE-2023-0687",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-0687"
},
{
"name": "CVE-2023-5156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5156"
},
{
"name": "CVE-2022-48522",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48522"
},
{
"name": "CVE-2023-39615",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39615"
},
{
"name": "CVE-2021-46848",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-46848"
},
{
"name": "CVE-2021-33294",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-33294"
},
{
"name": "CVE-2021-43618",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-43618"
},
{
"name": "CVE-2023-45322",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45322"
},
{
"name": "CVE-2022-28321",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-28321"
},
{
"name": "CVE-2023-4016",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4016"
},
{
"name": "CVE-2013-4235",
"url": "https://www.cve.org/CVERecord?id=CVE-2013-4235"
},
{
"name": "CVE-2023-34969",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-34969"
},
{
"name": "CVE-2021-20193",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20193"
},
{
"name": "CVE-2023-29383",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-29383"
},
{
"name": "CVE-2023-5981",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5981"
},
{
"name": "CVE-2023-48795",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48795"
},
{
"name": "CVE-2023-6237",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6237"
},
{
"name": "CVE-2023-31484",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31484"
},
{
"name": "CVE-2023-36054",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36054"
},
{
"name": "CVE-2023-7104",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-7104"
},
{
"name": "CVE-2023-6129",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6129"
},
{
"name": "CVE-2023-46218",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46218"
},
{
"name": "CVE-2023-46219",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46219"
},
{
"name": "CVE-2024-0727",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0727"
},
{
"name": "CVE-2023-47100",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47100"
},
{
"name": "CVE-2023-47038",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47038"
},
{
"name": "CVE-2023-39325",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39325"
},
{
"name": "CVE-2022-27772",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-27772"
},
{
"name": "CVE-2023-27043",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-27043"
},
{
"name": "CVE-2023-6481",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6481"
},
{
"name": "CVE-2023-36632",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-36632"
},
{
"name": "CVE-2024-28085",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28085"
},
{
"name": "CVE-2024-2511",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2511"
},
{
"name": "CVE-2020-22916",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-22916"
},
{
"name": "CVE-2016-2781",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2781"
},
{
"name": "CVE-2023-3978",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3978"
},
{
"name": "CVE-2017-7501",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-7501"
},
{
"name": "CVE-2021-35939",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35939"
},
{
"name": "CVE-2024-0553",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0553"
},
{
"name": "CVE-2021-35938",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35938"
},
{
"name": "CVE-2021-35937",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-35937"
},
{
"name": "CVE-2023-6597",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6597"
},
{
"name": "CVE-2024-26686",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26686"
},
{
"name": "CVE-2023-52572",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52572"
},
{
"name": "CVE-2007-4559",
"url": "https://www.cve.org/CVERecord?id=CVE-2007-4559"
},
{
"name": "CVE-2023-3138",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-3138"
},
{
"name": "CVE-2024-28182",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28182"
},
{
"name": "CVE-2023-45288",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-45288"
},
{
"name": "CVE-2024-4603",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4603"
},
{
"name": "CVE-2023-6378",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6378"
},
{
"name": "CVE-2023-31486",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31486"
},
{
"name": "CVE-2024-26739",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26739"
},
{
"name": "CVE-2024-4741",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4741"
},
{
"name": "CVE-2023-51074",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-51074"
},
{
"name": "CVE-2023-52757",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52757"
},
{
"name": "CVE-2024-35866",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35866"
},
{
"name": "CVE-2024-35867",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35867"
},
{
"name": "CVE-2024-35943",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35943"
},
{
"name": "CVE-2024-28180",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28180"
},
{
"name": "CVE-2024-29857",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-29857"
},
{
"name": "CVE-2024-30171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30171"
},
{
"name": "CVE-2024-30172",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-30172"
},
{
"name": "CVE-2024-5535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-5535"
},
{
"name": "CVE-2024-35790",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35790"
},
{
"name": "CVE-2024-3651",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3651"
},
{
"name": "CVE-2024-2004",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2004"
},
{
"name": "CVE-2024-2398",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2398"
},
{
"name": "CVE-2024-0397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0397"
},
{
"name": "CVE-2024-4030",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4030"
},
{
"name": "CVE-2024-4032",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4032"
},
{
"name": "CVE-2024-3596",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3596"
},
{
"name": "CVE-2024-0450",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0450"
},
{
"name": "CVE-2024-25062",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25062"
},
{
"name": "CVE-2024-26458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26458"
},
{
"name": "CVE-2024-26461",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26461"
},
{
"name": "CVE-2024-28834",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28834"
},
{
"name": "CVE-2024-2961",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2961"
},
{
"name": "CVE-2024-33599",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33599"
},
{
"name": "CVE-2024-33600",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33600"
},
{
"name": "CVE-2024-33601",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33601"
},
{
"name": "CVE-2024-33602",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-33602"
},
{
"name": "CVE-2024-35195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35195"
},
{
"name": "CVE-2024-36945",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36945"
},
{
"name": "CVE-2024-38540",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38540"
},
{
"name": "CVE-2024-38541",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38541"
},
{
"name": "CVE-2023-4641",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4641"
},
{
"name": "CVE-2024-0567",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0567"
},
{
"name": "CVE-2024-22365",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22365"
},
{
"name": "CVE-2024-21137",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21137"
},
{
"name": "CVE-2024-0760",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0760"
},
{
"name": "CVE-2024-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1737"
},
{
"name": "CVE-2024-1975",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-1975"
},
{
"name": "CVE-2024-28835",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28835"
},
{
"name": "CVE-2024-6923",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6923"
},
{
"name": "CVE-2024-3219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3219"
},
{
"name": "CVE-2024-36908",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-36908"
},
{
"name": "CVE-2024-27402",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27402"
},
{
"name": "CVE-2024-37891",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-37891"
},
{
"name": "CVE-2024-6345",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6345"
},
{
"name": "CVE-2024-38808",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38808"
},
{
"name": "CVE-2024-38809",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38809"
},
{
"name": "CVE-2024-42230",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42230"
},
{
"name": "CVE-2024-38807",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38807"
},
{
"name": "CVE-2024-6232",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6232"
},
{
"name": "CVE-2024-6119",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6119"
},
{
"name": "CVE-2024-38816",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38816"
},
{
"name": "CVE-2022-48893",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-48893"
},
{
"name": "CVE-2024-42322",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42322"
},
{
"name": "CVE-2024-7264",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7264"
},
{
"name": "CVE-2023-5841",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5841"
},
{
"name": "CVE-2024-34459",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34459"
},
{
"name": "CVE-2024-8096",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8096"
},
{
"name": "CVE-2023-6246",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6246"
},
{
"name": "CVE-2024-46812",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46812"
},
{
"name": "CVE-2024-46821",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46821"
},
{
"name": "CVE-2024-46751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46751"
},
{
"name": "CVE-2024-46753",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46753"
},
{
"name": "CVE-2024-46774",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46774"
},
{
"name": "CVE-2024-46787",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46787"
},
{
"name": "CVE-2022-21454",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21454"
},
{
"name": "CVE-2024-21193",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21193"
},
{
"name": "CVE-2024-21194",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21194"
},
{
"name": "CVE-2024-21196",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21196"
},
{
"name": "CVE-2024-21197",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21197"
},
{
"name": "CVE-2024-21198",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21198"
},
{
"name": "CVE-2024-21199",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21199"
},
{
"name": "CVE-2024-21201",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21201"
},
{
"name": "CVE-2024-21207",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21207"
},
{
"name": "CVE-2024-21209",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21209"
},
{
"name": "CVE-2024-21212",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21212"
},
{
"name": "CVE-2024-21213",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21213"
},
{
"name": "CVE-2024-21219",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21219"
},
{
"name": "CVE-2024-21236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21236"
},
{
"name": "CVE-2024-21239",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21239"
},
{
"name": "CVE-2024-21241",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21241"
},
{
"name": "CVE-2024-7254",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7254"
},
{
"name": "CVE-2024-9143",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9143"
},
{
"name": "CVE-2024-38819",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38819"
},
{
"name": "CVE-2024-38820",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38820"
},
{
"name": "CVE-2024-10487",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10487"
},
{
"name": "CVE-2024-10458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10458"
},
{
"name": "CVE-2024-10459",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10459"
},
{
"name": "CVE-2024-10460",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10460"
},
{
"name": "CVE-2024-10461",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10461"
},
{
"name": "CVE-2024-10462",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10462"
},
{
"name": "CVE-2024-10463",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10463"
},
{
"name": "CVE-2024-10464",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10464"
},
{
"name": "CVE-2024-10465",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10465"
},
{
"name": "CVE-2024-10466",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10466"
},
{
"name": "CVE-2024-10467",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10467"
},
{
"name": "CVE-2024-10468",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10468"
},
{
"name": "CVE-2024-34447",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34447"
},
{
"name": "CVE-2024-38286",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38286"
},
{
"name": "CVE-2024-7592",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7592"
},
{
"name": "CVE-2024-8088",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8088"
},
{
"name": "CVE-2024-9681",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9681"
},
{
"name": "CVE-2024-11168",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11168"
},
{
"name": "CVE-2024-38828",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-38828"
},
{
"name": "CVE-2024-46816",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46816"
},
{
"name": "CVE-2024-11395",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11395"
},
{
"name": "CVE-2024-49960",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49960"
},
{
"name": "CVE-2024-50047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50047"
},
{
"name": "CVE-2024-50073",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50073"
},
{
"name": "CVE-2024-11691",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11691"
},
{
"name": "CVE-2024-11692",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11692"
},
{
"name": "CVE-2024-11693",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11693"
},
{
"name": "CVE-2024-11694",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11694"
},
{
"name": "CVE-2024-11695",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11695"
},
{
"name": "CVE-2024-11696",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11696"
},
{
"name": "CVE-2024-11697",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11697"
},
{
"name": "CVE-2024-11698",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11698"
},
{
"name": "CVE-2024-11699",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11699"
},
{
"name": "CVE-2024-11700",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11700"
},
{
"name": "CVE-2024-11701",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11701"
},
{
"name": "CVE-2024-11702",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11702"
},
{
"name": "CVE-2024-11703",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11703"
},
{
"name": "CVE-2024-11704",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11704"
},
{
"name": "CVE-2024-11705",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11705"
},
{
"name": "CVE-2024-11706",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11706"
},
{
"name": "CVE-2024-11708",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11708"
},
{
"name": "CVE-2024-50272",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50272"
},
{
"name": "CVE-2024-50280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50280"
},
{
"name": "CVE-2024-11053",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11053"
},
{
"name": "CVE-2024-10041",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10041"
},
{
"name": "CVE-2024-10963",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10963"
},
{
"name": "CVE-2024-47554",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47554"
},
{
"name": "CVE-2024-49989",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-49989"
},
{
"name": "CVE-2024-50125",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50125"
},
{
"name": "CVE-2024-53051",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53051"
},
{
"name": "CVE-2024-53144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53144"
},
{
"name": "CVE-2024-8805",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8805"
},
{
"name": "CVE-2025-0237",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0237"
},
{
"name": "CVE-2025-0238",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0238"
},
{
"name": "CVE-2025-0239",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0239"
},
{
"name": "CVE-2025-0240",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0240"
},
{
"name": "CVE-2025-0241",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0241"
},
{
"name": "CVE-2025-0242",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0242"
},
{
"name": "CVE-2025-0243",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0243"
},
{
"name": "CVE-2025-0245",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0245"
},
{
"name": "CVE-2025-0247",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0247"
},
{
"name": "CVE-2025-0434",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0434"
},
{
"name": "CVE-2025-0435",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0435"
},
{
"name": "CVE-2025-0436",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0436"
},
{
"name": "CVE-2025-0437",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0437"
},
{
"name": "CVE-2025-0438",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0438"
},
{
"name": "CVE-2025-0439",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0439"
},
{
"name": "CVE-2025-0440",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0440"
},
{
"name": "CVE-2025-0441",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0441"
},
{
"name": "CVE-2025-0442",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0442"
},
{
"name": "CVE-2025-0443",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0443"
},
{
"name": "CVE-2025-0446",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0446"
},
{
"name": "CVE-2025-0447",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0447"
},
{
"name": "CVE-2025-0448",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0448"
},
{
"name": "CVE-2025-21523",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21523"
},
{
"name": "CVE-2025-0612",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0612"
},
{
"name": "CVE-2025-23083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23083"
},
{
"name": "CVE-2025-23084",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23084"
},
{
"name": "CVE-2025-23085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23085"
},
{
"name": "CVE-2025-0938",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0938"
},
{
"name": "CVE-2025-0444",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0444"
},
{
"name": "CVE-2025-0445",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0445"
},
{
"name": "CVE-2025-0451",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0451"
},
{
"name": "CVE-2025-0762",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0762"
},
{
"name": "CVE-2025-1009",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1009"
},
{
"name": "CVE-2025-1010",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1010"
},
{
"name": "CVE-2025-1011",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1011"
},
{
"name": "CVE-2025-1012",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1012"
},
{
"name": "CVE-2025-1013",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1013"
},
{
"name": "CVE-2025-1014",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1014"
},
{
"name": "CVE-2024-56664",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56664"
},
{
"name": "CVE-2025-1016",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1016"
},
{
"name": "CVE-2025-1017",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1017"
},
{
"name": "CVE-2025-1018",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1018"
},
{
"name": "CVE-2025-1019",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1019"
},
{
"name": "CVE-2025-1020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1020"
},
{
"name": "CVE-2025-0167",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0167"
},
{
"name": "CVE-2025-0725",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0725"
},
{
"name": "CVE-2024-47535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47535"
},
{
"name": "CVE-2024-50258",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50258"
},
{
"name": "CVE-2024-53203",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53203"
},
{
"name": "CVE-2024-53128",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53128"
},
{
"name": "CVE-2025-0995",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0995"
},
{
"name": "CVE-2025-0996",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0996"
},
{
"name": "CVE-2025-0997",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0997"
},
{
"name": "CVE-2025-0998",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0998"
},
{
"name": "CVE-2024-13176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13176"
},
{
"name": "CVE-2025-1414",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1414"
},
{
"name": "CVE-2025-0999",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0999"
},
{
"name": "CVE-2025-1006",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1006"
},
{
"name": "CVE-2025-1426",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1426"
},
{
"name": "CVE-2024-56751",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56751"
},
{
"name": "CVE-2023-39017",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39017"
},
{
"name": "CVE-2025-1795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1795"
},
{
"name": "CVE-2025-1914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1914"
},
{
"name": "CVE-2025-1915",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1915"
},
{
"name": "CVE-2025-1916",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1916"
},
{
"name": "CVE-2025-1917",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1917"
},
{
"name": "CVE-2025-1918",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1918"
},
{
"name": "CVE-2025-1919",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1919"
},
{
"name": "CVE-2025-1921",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1921"
},
{
"name": "CVE-2025-1922",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1922"
},
{
"name": "CVE-2025-1923",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1923"
},
{
"name": "CVE-2025-1930",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1930"
},
{
"name": "CVE-2025-1931",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1931"
},
{
"name": "CVE-2025-1932",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1932"
},
{
"name": "CVE-2025-1933",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1933"
},
{
"name": "CVE-2025-1934",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1934"
},
{
"name": "CVE-2025-1935",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1935"
},
{
"name": "CVE-2025-1936",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1936"
},
{
"name": "CVE-2025-1937",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1937"
},
{
"name": "CVE-2025-1938",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1938"
},
{
"name": "CVE-2025-1939",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1939"
},
{
"name": "CVE-2025-1940",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1940"
},
{
"name": "CVE-2025-1941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1941"
},
{
"name": "CVE-2025-1942",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1942"
},
{
"name": "CVE-2025-1943",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1943"
},
{
"name": "CVE-2025-1920",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1920"
},
{
"name": "CVE-2025-2135",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2135"
},
{
"name": "CVE-2025-2136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2136"
},
{
"name": "CVE-2025-2137",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2137"
},
{
"name": "CVE-2025-24813",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24813"
},
{
"name": "CVE-2024-6763",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6763"
},
{
"name": "CVE-2022-49043",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49043"
},
{
"name": "CVE-2024-45338",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45338"
},
{
"name": "CVE-2024-51744",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-51744"
},
{
"name": "CVE-2025-24970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24970"
},
{
"name": "CVE-2025-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25193"
},
{
"name": "CVE-2024-45772",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45772"
},
{
"name": "CVE-2025-2476",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2476"
},
{
"name": "CVE-2025-2857",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2857"
},
{
"name": "CVE-2024-45337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45337"
},
{
"name": "CVE-2025-22870",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22870"
},
{
"name": "CVE-2025-2783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2783"
},
{
"name": "CVE-2022-49063",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49063"
},
{
"name": "CVE-2022-49535",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49535"
},
{
"name": "CVE-2024-56171",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56171"
},
{
"name": "CVE-2025-27113",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27113"
},
{
"name": "CVE-2025-3066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3066"
},
{
"name": "CVE-2025-3067",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3067"
},
{
"name": "CVE-2025-3068",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3068"
},
{
"name": "CVE-2025-3071",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3071"
},
{
"name": "CVE-2025-3072",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3072"
},
{
"name": "CVE-2025-3073",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3073"
},
{
"name": "CVE-2025-3074",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3074"
},
{
"name": "CVE-2025-3028",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3028"
},
{
"name": "CVE-2025-3029",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3029"
},
{
"name": "CVE-2025-3030",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3030"
},
{
"name": "CVE-2025-3031",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3031"
},
{
"name": "CVE-2025-3032",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3032"
},
{
"name": "CVE-2025-3033",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3033"
},
{
"name": "CVE-2025-3034",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3034"
},
{
"name": "CVE-2025-3035",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3035"
},
{
"name": "CVE-2024-54458",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54458"
},
{
"name": "CVE-2025-3608",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3608"
},
{
"name": "CVE-2025-21574",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21574"
},
{
"name": "CVE-2025-21575",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21575"
},
{
"name": "CVE-2025-21577",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21577"
},
{
"name": "CVE-2025-21579",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21579"
},
{
"name": "CVE-2025-21580",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21580"
},
{
"name": "CVE-2025-21581",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21581"
},
{
"name": "CVE-2025-21584",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21584"
},
{
"name": "CVE-2025-21585",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21585"
},
{
"name": "CVE-2025-21588",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21588"
},
{
"name": "CVE-2025-30681",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30681"
},
{
"name": "CVE-2025-30682",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30682"
},
{
"name": "CVE-2025-30683",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30683"
},
{
"name": "CVE-2025-30684",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30684"
},
{
"name": "CVE-2025-30685",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30685"
},
{
"name": "CVE-2025-30687",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30687"
},
{
"name": "CVE-2025-30688",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30688"
},
{
"name": "CVE-2025-30689",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30689"
},
{
"name": "CVE-2025-30693",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30693"
},
{
"name": "CVE-2025-30695",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30695"
},
{
"name": "CVE-2025-30696",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30696"
},
{
"name": "CVE-2025-30699",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30699"
},
{
"name": "CVE-2025-30703",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30703"
},
{
"name": "CVE-2025-30704",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30704"
},
{
"name": "CVE-2025-30705",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30705"
},
{
"name": "CVE-2025-30715",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30715"
},
{
"name": "CVE-2025-30721",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30721"
},
{
"name": "CVE-2025-21839",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21839"
},
{
"name": "CVE-2025-3619",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3619"
},
{
"name": "CVE-2025-3620",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3620"
},
{
"name": "CVE-2025-24928",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24928"
},
{
"name": "CVE-2025-21941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21941"
},
{
"name": "CVE-2025-21956",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21956"
},
{
"name": "CVE-2025-21957",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21957"
},
{
"name": "CVE-2025-21959",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21959"
},
{
"name": "CVE-2025-21962",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21962"
},
{
"name": "CVE-2025-21963",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21963"
},
{
"name": "CVE-2025-21964",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21964"
},
{
"name": "CVE-2025-21968",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21968"
},
{
"name": "CVE-2025-21970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21970"
},
{
"name": "CVE-2025-21975",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21975"
},
{
"name": "CVE-2025-21981",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21981"
},
{
"name": "CVE-2025-21991",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21991"
},
{
"name": "CVE-2025-21992",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21992"
},
{
"name": "CVE-2025-21994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21994"
},
{
"name": "CVE-2025-21996",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21996"
},
{
"name": "CVE-2025-21999",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21999"
},
{
"name": "CVE-2025-22004",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22004"
},
{
"name": "CVE-2025-22005",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22005"
},
{
"name": "CVE-2025-22007",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22007"
},
{
"name": "CVE-2025-22008",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22008"
},
{
"name": "CVE-2025-22010",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22010"
},
{
"name": "CVE-2025-22014",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22014"
},
{
"name": "CVE-2024-12798",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12798"
},
{
"name": "CVE-2024-12801",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12801"
},
{
"name": "CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"name": "CVE-2025-22871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22871"
},
{
"name": "CVE-2025-22235",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22235"
},
{
"name": "CVE-2025-2312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2312"
},
{
"name": "CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"name": "CVE-2025-4050",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4050"
},
{
"name": "CVE-2025-4051",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4051"
},
{
"name": "CVE-2025-4052",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4052"
},
{
"name": "CVE-2025-4096",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4096"
},
{
"name": "CVE-2025-2817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2817"
},
{
"name": "CVE-2025-4082",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4082"
},
{
"name": "CVE-2025-4083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4083"
},
{
"name": "CVE-2025-4085",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4085"
},
{
"name": "CVE-2025-4087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4087"
},
{
"name": "CVE-2025-4088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4088"
},
{
"name": "CVE-2025-4089",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4089"
},
{
"name": "CVE-2025-4090",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4090"
},
{
"name": "CVE-2025-4091",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4091"
},
{
"name": "CVE-2025-4092",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4092"
},
{
"name": "CVE-2023-53034",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-53034"
},
{
"name": "CVE-2024-46742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46742"
},
{
"name": "CVE-2025-21853",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21853"
},
{
"name": "CVE-2025-22025",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22025"
},
{
"name": "CVE-2025-22027",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22027"
},
{
"name": "CVE-2025-22035",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22035"
},
{
"name": "CVE-2025-22044",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22044"
},
{
"name": "CVE-2025-22045",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22045"
},
{
"name": "CVE-2025-22050",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22050"
},
{
"name": "CVE-2025-22054",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22054"
},
{
"name": "CVE-2025-22055",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22055"
},
{
"name": "CVE-2025-22056",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22056"
},
{
"name": "CVE-2025-22060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22060"
},
{
"name": "CVE-2025-22063",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22063"
},
{
"name": "CVE-2025-22066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22066"
},
{
"name": "CVE-2025-22071",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22071"
},
{
"name": "CVE-2025-22073",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22073"
},
{
"name": "CVE-2025-22075",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22075"
},
{
"name": "CVE-2025-22079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22079"
},
{
"name": "CVE-2025-22081",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22081"
},
{
"name": "CVE-2025-22086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22086"
},
{
"name": "CVE-2025-22089",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22089"
},
{
"name": "CVE-2025-22097",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22097"
},
{
"name": "CVE-2025-23136",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23136"
},
{
"name": "CVE-2025-23138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23138"
},
{
"name": "CVE-2025-37785",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37785"
},
{
"name": "CVE-2025-37838",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37838"
},
{
"name": "CVE-2025-38152",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38152"
},
{
"name": "CVE-2025-38575",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38575"
},
{
"name": "CVE-2025-38637",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38637"
},
{
"name": "CVE-2025-39728",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39728"
},
{
"name": "CVE-2025-39735",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-39735"
},
{
"name": "CVE-2025-27516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27516"
},
{
"name": "CVE-2025-29087",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-29087"
},
{
"name": "CVE-2025-3277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3277"
},
{
"name": "CVE-2025-4609",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4609"
},
{
"name": "CVE-2025-4664",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4664"
},
{
"name": "CVE-2025-4372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4372"
},
{
"name": "CVE-2025-4516",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4516"
},
{
"name": "CVE-2025-22233",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22233"
},
{
"name": "CVE-2024-55549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55549"
},
{
"name": "CVE-2024-9287",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-9287"
},
{
"name": "CVE-2025-24855",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24855"
},
{
"name": "CVE-2025-4918",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4918"
},
{
"name": "CVE-2025-4919",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4919"
},
{
"name": "CVE-2025-41232",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41232"
},
{
"name": "CVE-2025-23165",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23165"
},
{
"name": "CVE-2025-23166",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23166"
},
{
"name": "CVE-2025-5063",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5063"
},
{
"name": "CVE-2025-5064",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5064"
},
{
"name": "CVE-2025-5065",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5065"
},
{
"name": "CVE-2025-5066",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5066"
},
{
"name": "CVE-2025-5067",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5067"
},
{
"name": "CVE-2025-32414",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32414"
},
{
"name": "CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"name": "CVE-2022-49728",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49728"
},
{
"name": "CVE-2024-58093",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58093"
},
{
"name": "CVE-2025-22018",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22018"
},
{
"name": "CVE-2025-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22020"
},
{
"name": "CVE-2025-22062",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22062"
},
{
"name": "CVE-2025-23145",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23145"
},
{
"name": "CVE-2025-37798",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37798"
},
{
"name": "CVE-2025-37749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37749"
},
{
"name": "CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"name": "CVE-2025-5263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5263"
},
{
"name": "CVE-2025-5264",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5264"
},
{
"name": "CVE-2025-5265",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5265"
},
{
"name": "CVE-2025-5266",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5266"
},
{
"name": "CVE-2025-5267",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5267"
},
{
"name": "CVE-2025-5268",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5268"
},
{
"name": "CVE-2025-5270",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5270"
},
{
"name": "CVE-2025-5271",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5271"
},
{
"name": "CVE-2025-5272",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5272"
},
{
"name": "CVE-2025-5281",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5281"
},
{
"name": "CVE-2025-5283",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5283"
},
{
"name": "CVE-2025-46701",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46701"
},
{
"name": "CVE-2025-22021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22021"
},
{
"name": "CVE-2025-23140",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23140"
},
{
"name": "CVE-2025-23142",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23142"
},
{
"name": "CVE-2025-23144",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23144"
},
{
"name": "CVE-2025-23146",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23146"
},
{
"name": "CVE-2025-23147",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23147"
},
{
"name": "CVE-2025-23148",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23148"
},
{
"name": "CVE-2025-23150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23150"
},
{
"name": "CVE-2025-23151",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23151"
},
{
"name": "CVE-2025-23156",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23156"
},
{
"name": "CVE-2025-23157",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23157"
},
{
"name": "CVE-2025-23158",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23158"
},
{
"name": "CVE-2025-23159",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23159"
},
{
"name": "CVE-2025-23161",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23161"
},
{
"name": "CVE-2025-23163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23163"
},
{
"name": "CVE-2025-37738",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37738"
},
{
"name": "CVE-2025-37739",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37739"
},
{
"name": "CVE-2025-37740",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37740"
},
{
"name": "CVE-2025-37741",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37741"
},
{
"name": "CVE-2025-37742",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37742"
},
{
"name": "CVE-2025-37756",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37756"
},
{
"name": "CVE-2025-37757",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37757"
},
{
"name": "CVE-2025-37758",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37758"
},
{
"name": "CVE-2025-37765",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37765"
},
{
"name": "CVE-2025-37766",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37766"
},
{
"name": "CVE-2025-37767",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37767"
},
{
"name": "CVE-2025-37768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37768"
},
{
"name": "CVE-2025-37770",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37770"
},
{
"name": "CVE-2025-37771",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37771"
},
{
"name": "CVE-2025-37773",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37773"
},
{
"name": "CVE-2025-37780",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37780"
},
{
"name": "CVE-2025-37781",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37781"
},
{
"name": "CVE-2025-37787",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37787"
},
{
"name": "CVE-2025-37788",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37788"
},
{
"name": "CVE-2025-37789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37789"
},
{
"name": "CVE-2025-37790",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37790"
},
{
"name": "CVE-2025-37792",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37792"
},
{
"name": "CVE-2025-37794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37794"
},
{
"name": "CVE-2025-37796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37796"
},
{
"name": "CVE-2025-37797",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37797"
},
{
"name": "CVE-2025-37803",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37803"
},
{
"name": "CVE-2025-37805",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37805"
},
{
"name": "CVE-2025-37808",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37808"
},
{
"name": "CVE-2025-37810",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37810"
},
{
"name": "CVE-2025-37811",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37811"
},
{
"name": "CVE-2025-37812",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37812"
},
{
"name": "CVE-2025-37817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37817"
},
{
"name": "CVE-2025-37823",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37823"
},
{
"name": "CVE-2025-37824",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37824"
},
{
"name": "CVE-2025-37829",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37829"
},
{
"name": "CVE-2025-37830",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37830"
},
{
"name": "CVE-2025-37836",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37836"
},
{
"name": "CVE-2025-37839",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37839"
},
{
"name": "CVE-2025-37840",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37840"
},
{
"name": "CVE-2025-37841",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37841"
},
{
"name": "CVE-2025-37844",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37844"
},
{
"name": "CVE-2025-37850",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37850"
},
{
"name": "CVE-2025-37851",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37851"
},
{
"name": "CVE-2025-37857",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37857"
},
{
"name": "CVE-2025-37858",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37858"
},
{
"name": "CVE-2025-37859",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37859"
},
{
"name": "CVE-2025-37862",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37862"
},
{
"name": "CVE-2025-37867",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37867"
},
{
"name": "CVE-2025-37871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37871"
},
{
"name": "CVE-2025-37875",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37875"
},
{
"name": "CVE-2025-37881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37881"
},
{
"name": "CVE-2025-37883",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37883"
},
{
"name": "CVE-2025-37885",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37885"
},
{
"name": "CVE-2025-37889",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37889"
},
{
"name": "CVE-2025-37892",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37892"
},
{
"name": "CVE-2025-37937",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37937"
},
{
"name": "CVE-2025-37940",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37940"
},
{
"name": "CVE-2025-37982",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37982"
},
{
"name": "CVE-2025-37983",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37983"
},
{
"name": "CVE-2025-37985",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37985"
},
{
"name": "CVE-2025-37989",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37989"
},
{
"name": "CVE-2025-37819",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37819"
},
{
"name": "CVE-2025-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37890"
},
{
"name": "CVE-2025-37905",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37905"
},
{
"name": "CVE-2025-37909",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37909"
},
{
"name": "CVE-2025-37911",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37911"
},
{
"name": "CVE-2025-37912",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37912"
},
{
"name": "CVE-2025-37913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37913"
},
{
"name": "CVE-2025-37914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37914"
},
{
"name": "CVE-2025-37915",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37915"
},
{
"name": "CVE-2025-37923",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37923"
},
{
"name": "CVE-2025-37927",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37927"
},
{
"name": "CVE-2025-37930",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37930"
},
{
"name": "CVE-2025-37932",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37932"
},
{
"name": "CVE-2025-37949",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37949"
},
{
"name": "CVE-2025-37964",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37964"
},
{
"name": "CVE-2025-37967",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37967"
},
{
"name": "CVE-2025-37969",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37969"
},
{
"name": "CVE-2025-37970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37970"
},
{
"name": "CVE-2025-37990",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37990"
},
{
"name": "CVE-2025-37991",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37991"
},
{
"name": "CVE-2025-5068",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5068"
},
{
"name": "CVE-2025-5419",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5419"
},
{
"name": "CVE-2025-27144",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27144"
},
{
"name": "CVE-2025-49709",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49709"
},
{
"name": "CVE-2025-49710",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49710"
},
{
"name": "CVE-2023-6779",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6779"
},
{
"name": "CVE-2023-6780",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-6780"
},
{
"name": "CVE-2024-12133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12133"
},
{
"name": "CVE-2024-12243",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12243"
},
{
"name": "CVE-2024-2236",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2236"
},
{
"name": "CVE-2024-56433",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56433"
},
{
"name": "CVE-2025-0395",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0395"
},
{
"name": "CVE-2025-1390",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1390"
},
{
"name": "CVE-2025-29088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-29088"
},
{
"name": "CVE-2025-31115",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31115"
},
{
"name": "CVE-2025-4598",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4598"
},
{
"name": "CVE-2025-5958",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5958"
},
{
"name": "CVE-2025-5959",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5959"
},
{
"name": "CVE-2025-41234",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41234"
},
{
"name": "CVE-2025-49146",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49146"
},
{
"name": "CVE-2025-48988",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48988"
},
{
"name": "CVE-2025-49124",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49124"
},
{
"name": "CVE-2025-49125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49125"
},
{
"name": "CVE-2025-6191",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6191"
},
{
"name": "CVE-2025-6192",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6192"
},
{
"name": "CVE-2024-53427",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53427"
},
{
"name": "CVE-2024-56406",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-56406"
},
{
"name": "CVE-2025-22872",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22872"
},
{
"name": "CVE-2025-4802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4802"
},
{
"name": "CVE-2022-49168",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49168"
},
{
"name": "CVE-2025-37998",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37998"
},
{
"name": "CVE-2023-42366",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-42366"
},
{
"name": "CVE-2025-6424",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6424"
},
{
"name": "CVE-2025-6425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6425"
},
{
"name": "CVE-2025-6426",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6426"
},
{
"name": "CVE-2025-6427",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6427"
},
{
"name": "CVE-2025-6429",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6429"
},
{
"name": "CVE-2025-6430",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6430"
},
{
"name": "CVE-2025-6432",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6432"
},
{
"name": "CVE-2025-6433",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6433"
},
{
"name": "CVE-2025-6434",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6434"
},
{
"name": "CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"name": "CVE-2025-6555",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6555"
},
{
"name": "CVE-2025-6556",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6556"
},
{
"name": "CVE-2025-6557",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6557"
},
{
"name": "CVE-2025-6435",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6435"
},
{
"name": "CVE-2025-6436",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6436"
},
{
"name": "CVE-2025-6554",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6554"
},
{
"name": "CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"name": "CVE-2022-49636",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49636"
},
{
"name": "CVE-2025-37997",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37997"
},
{
"name": "CVE-2025-38000",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38000"
},
{
"name": "CVE-2025-38001",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38001"
},
{
"name": "CVE-2025-32462",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32462"
},
{
"name": "CVE-2025-52520",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52520"
},
{
"name": "CVE-2025-53506",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53506"
},
{
"name": "CVE-2024-47081",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47081"
},
{
"name": "CVE-2025-3576",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-3576"
},
{
"name": "CVE-2025-47268",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47268"
},
{
"name": "CVE-2025-37992",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37992"
},
{
"name": "CVE-2025-37994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37994"
},
{
"name": "CVE-2025-37995",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37995"
},
{
"name": "CVE-2025-38005",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38005"
},
{
"name": "CVE-2025-38009",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38009"
},
{
"name": "CVE-2025-38023",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38023"
},
{
"name": "CVE-2025-38024",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38024"
},
{
"name": "CVE-2025-38083",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38083"
},
{
"name": "CVE-2025-22227",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22227"
},
{
"name": "CVE-2025-6558",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6558"
},
{
"name": "CVE-2025-7656",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7656"
},
{
"name": "CVE-2025-7657",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7657"
},
{
"name": "CVE-2025-30749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30749"
},
{
"name": "CVE-2025-30754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30754"
},
{
"name": "CVE-2025-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50059"
},
{
"name": "CVE-2025-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50106"
},
{
"name": "CVE-2025-50088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50088"
},
{
"name": "CVE-2025-48734",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48734"
},
{
"name": "CVE-2022-21546",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-21546"
},
{
"name": "CVE-2020-16156",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-16156"
},
{
"name": "CVE-2025-8010",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8010"
},
{
"name": "CVE-2025-8011",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8011"
},
{
"name": "CVE-2025-8027",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8027"
},
{
"name": "CVE-2025-8028",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8028"
},
{
"name": "CVE-2025-8029",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8029"
},
{
"name": "CVE-2025-8030",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8030"
},
{
"name": "CVE-2025-8031",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8031"
},
{
"name": "CVE-2025-8032",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8032"
},
{
"name": "CVE-2025-8033",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8033"
},
{
"name": "CVE-2025-8034",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8034"
},
{
"name": "CVE-2025-8035",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8035"
},
{
"name": "CVE-2025-8036",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8036"
},
{
"name": "CVE-2025-8037",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8037"
},
{
"name": "CVE-2025-8038",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8038"
},
{
"name": "CVE-2025-8039",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8039"
},
{
"name": "CVE-2025-8040",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8040"
},
{
"name": "CVE-2025-8041",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8041"
},
{
"name": "CVE-2025-8043",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8043"
},
{
"name": "CVE-2025-8044",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8044"
},
{
"name": "CVE-2024-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23337"
},
{
"name": "CVE-2024-45339",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45339"
},
{
"name": "CVE-2024-47611",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47611"
},
{
"name": "CVE-2025-0913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0913"
},
{
"name": "CVE-2025-22874",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22874"
},
{
"name": "CVE-2025-32988",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32988"
},
{
"name": "CVE-2025-32989",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32989"
},
{
"name": "CVE-2025-32990",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32990"
},
{
"name": "CVE-2025-38177",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38177"
},
{
"name": "CVE-2025-4673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4673"
},
{
"name": "CVE-2025-48060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48060"
},
{
"name": "CVE-2025-4877",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4877"
},
{
"name": "CVE-2025-4878",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4878"
},
{
"name": "CVE-2025-48924",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48924"
},
{
"name": "CVE-2025-50181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50181"
},
{
"name": "CVE-2025-5318",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5318"
},
{
"name": "CVE-2025-5372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5372"
},
{
"name": "CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"name": "CVE-2025-5915",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5915"
},
{
"name": "CVE-2025-5916",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5916"
},
{
"name": "CVE-2025-5917",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5917"
},
{
"name": "CVE-2025-6069",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6069"
},
{
"name": "CVE-2025-6395",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6395"
},
{
"name": "CVE-2025-38094",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38094"
},
{
"name": "CVE-2025-8194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8194"
},
{
"name": "CVE-2025-8292",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8292"
},
{
"name": "CVE-2025-7424",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7424"
},
{
"name": "CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"name": "CVE-2025-50182",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50182"
},
{
"name": "CVE-2025-5889",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5889"
},
{
"name": "CVE-2025-8576",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8576"
},
{
"name": "CVE-2025-8577",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8577"
},
{
"name": "CVE-2025-8578",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8578"
},
{
"name": "CVE-2025-8579",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8579"
},
{
"name": "CVE-2025-8580",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8580"
},
{
"name": "CVE-2025-8581",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8581"
},
{
"name": "CVE-2025-8582",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8582"
},
{
"name": "CVE-2025-8583",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8583"
},
{
"name": "CVE-2025-27210",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27210"
},
{
"name": "CVE-2025-27817",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27817"
},
{
"name": "CVE-2025-27818",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27818"
},
{
"name": "CVE-2025-8879",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8879"
},
{
"name": "CVE-2025-8880",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8880"
},
{
"name": "CVE-2025-8881",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8881"
},
{
"name": "CVE-2025-8882",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8882"
},
{
"name": "CVE-2025-8901",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8901"
},
{
"name": "CVE-2025-48989",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48989"
},
{
"name": "CVE-2025-7339",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7339"
},
{
"name": "CVE-2025-7783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7783"
},
{
"name": "CVE-2021-32256",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32256"
},
{
"name": "CVE-2024-25260",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-25260"
},
{
"name": "CVE-2025-1371",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1371"
},
{
"name": "CVE-2025-1376",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1376"
},
{
"name": "CVE-2025-1377",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1377"
},
{
"name": "CVE-2025-47273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47273"
},
{
"name": "CVE-2025-48964",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48964"
},
{
"name": "CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"name": "CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"name": "CVE-2025-41242",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41242"
},
{
"name": "CVE-2025-9132",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9132"
},
{
"name": "CVE-2025-54988",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54988"
},
{
"name": "CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"name": "CVE-2024-13009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13009"
},
{
"name": "CVE-2025-55668",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55668"
},
{
"name": "CVE-2025-4674",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4674"
},
{
"name": "CVE-2025-47907",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47907"
},
{
"name": "CVE-2025-52999",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
},
{
"name": "CVE-2025-55163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55163"
},
{
"name": "CVE-2025-8941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8941"
},
{
"name": "CVE-2025-9288",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9288"
},
{
"name": "CVE-2005-2541",
"url": "https://www.cve.org/CVERecord?id=CVE-2005-2541"
},
{
"name": "CVE-2008-5727",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5727"
},
{
"name": "CVE-2008-5728",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5728"
},
{
"name": "CVE-2008-5729",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5729"
},
{
"name": "CVE-2008-5730",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5730"
},
{
"name": "CVE-2008-5742",
"url": "https://www.cve.org/CVERecord?id=CVE-2008-5742"
},
{
"name": "CVE-2011-3374",
"url": "https://www.cve.org/CVERecord?id=CVE-2011-3374"
},
{
"name": "CVE-2014-4715",
"url": "https://www.cve.org/CVERecord?id=CVE-2014-4715"
},
{
"name": "CVE-2015-2214",
"url": "https://www.cve.org/CVERecord?id=CVE-2015-2214"
},
{
"name": "CVE-2016-0682",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0682"
},
{
"name": "CVE-2016-0689",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0689"
},
{
"name": "CVE-2016-0692",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0692"
},
{
"name": "CVE-2016-0694",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-0694"
},
{
"name": "CVE-2016-2149",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2149"
},
{
"name": "CVE-2016-2160",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-2160"
},
{
"name": "CVE-2016-3418",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-3418"
},
{
"name": "CVE-2017-10140",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-10140"
},
{
"name": "CVE-2017-12195",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12195"
},
{
"name": "CVE-2017-12629",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-12629"
},
{
"name": "CVE-2017-3604",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3604"
},
{
"name": "CVE-2017-3605",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3605"
},
{
"name": "CVE-2017-3606",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3606"
},
{
"name": "CVE-2017-3607",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3607"
},
{
"name": "CVE-2017-3608",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3608"
},
{
"name": "CVE-2017-3609",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3609"
},
{
"name": "CVE-2017-3610",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3610"
},
{
"name": "CVE-2017-3611",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3611"
},
{
"name": "CVE-2017-3612",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3612"
},
{
"name": "CVE-2017-3613",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3613"
},
{
"name": "CVE-2017-3614",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3614"
},
{
"name": "CVE-2017-3615",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3615"
},
{
"name": "CVE-2017-3616",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3616"
},
{
"name": "CVE-2017-3617",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-3617"
},
{
"name": "CVE-2018-1000169",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1000169"
},
{
"name": "CVE-2018-1196",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1196"
},
{
"name": "CVE-2018-1273",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-1273"
},
{
"name": "CVE-2019-10782",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-10782"
},
{
"name": "CVE-2019-9658",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-9658"
},
{
"name": "CVE-2020-2981",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-2981"
},
{
"name": "CVE-2021-20298",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20298"
},
{
"name": "CVE-2021-20304",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-20304"
},
{
"name": "CVE-2021-22055",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-22055"
},
{
"name": "CVE-2021-23169",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-23169"
},
{
"name": "CVE-2021-3236",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3236"
},
{
"name": "CVE-2022-0635",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0635"
},
{
"name": "CVE-2022-0667",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-0667"
},
{
"name": "CVE-2022-3219",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-3219"
},
{
"name": "CVE-2022-39046",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39046"
},
{
"name": "CVE-2022-42010",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42010"
},
{
"name": "CVE-2022-42011",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42011"
},
{
"name": "CVE-2022-42012",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-42012"
},
{
"name": "CVE-2022-44638",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-44638"
},
{
"name": "CVE-2023-31437",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31437"
},
{
"name": "CVE-2023-31438",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31438"
},
{
"name": "CVE-2023-31439",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-31439"
},
{
"name": "CVE-2023-37769",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-37769"
},
{
"name": "CVE-2023-39810",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-39810"
},
{
"name": "CVE-2023-4156",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4156"
},
{
"name": "CVE-2023-4320",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4320"
},
{
"name": "CVE-2023-43785",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43785"
},
{
"name": "CVE-2023-43786",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43786"
},
{
"name": "CVE-2023-43787",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-43787"
},
{
"name": "CVE-2023-46129",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46129"
},
{
"name": "CVE-2023-47039",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-47039"
},
{
"name": "CVE-2023-5189",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-5189"
},
{
"name": "CVE-2024-11584",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-11584"
},
{
"name": "CVE-2024-21742",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21742"
},
{
"name": "CVE-2024-22047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-22047"
},
{
"name": "CVE-2024-2397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-2397"
},
{
"name": "CVE-2024-26462",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-26462"
},
{
"name": "CVE-2024-31047",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-31047"
},
{
"name": "CVE-2024-3220",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-3220"
},
{
"name": "CVE-2024-58251",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58251"
},
{
"name": "CVE-2024-6174",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6174"
},
{
"name": "CVE-2024-7012",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-7012"
},
{
"name": "CVE-2025-1352",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1352"
},
{
"name": "CVE-2025-1365",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1365"
},
{
"name": "CVE-2025-1372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1372"
},
{
"name": "CVE-2025-24294",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24294"
},
{
"name": "CVE-2025-26519",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-26519"
},
{
"name": "CVE-2025-27587",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27587"
},
{
"name": "CVE-2025-30258",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30258"
},
{
"name": "CVE-2025-31672",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31672"
},
{
"name": "CVE-2025-40909",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40909"
},
{
"name": "CVE-2025-43857",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43857"
},
{
"name": "CVE-2025-45582",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-45582"
},
{
"name": "CVE-2025-45768",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-45768"
},
{
"name": "CVE-2025-46392",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46392"
},
{
"name": "CVE-2025-46394",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46394"
},
{
"name": "CVE-2025-49795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49795"
},
{
"name": "CVE-2025-5115",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5115"
},
{
"name": "CVE-2025-5222",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5222"
},
{
"name": "CVE-2025-5278",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5278"
},
{
"name": "CVE-2025-53864",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53864"
},
{
"name": "CVE-2025-6170",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6170"
},
{
"name": "CVE-2025-6297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6297"
},
{
"name": "CVE-2025-7962",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7962"
},
{
"name": "CVE-2025-8058",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8058"
},
{
"name": "CVE-2025-8262",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8262"
},
{
"name": "CVE-2025-8732",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8732"
},
{
"name": "CVE-2025-8885",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8885"
},
{
"name": "CVE-2025-8916",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8916"
},
{
"name": "CVE-2025-9179",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9179"
},
{
"name": "CVE-2025-9180",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9180"
},
{
"name": "CVE-2025-9181",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9181"
},
{
"name": "CVE-2025-9182",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9182"
},
{
"name": "CVE-2025-9183",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9183"
},
{
"name": "CVE-2025-9184",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9184"
},
{
"name": "CVE-2025-9185",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9185"
},
{
"name": "CVE-2025-9187",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9187"
},
{
"name": "CVE-2025-9308",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9308"
}
],
"initial_release_date": "2025-09-05T00:00:00",
"last_revision_date": "2025-09-05T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0756",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-09-05T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits VMware. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware",
"vendor_advisories": [
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36093",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36093"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36102",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36102"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36101",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36101"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36100",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36100"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36105",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36105"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36091",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36091"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36078",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36078"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36107",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36107"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36094",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36094"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36097",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36097"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-46",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36104"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36108",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36108"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36095",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36095"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-09",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36090"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36096",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36096"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36106",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36106"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36109",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36109"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36098",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36098"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware DSA-2025-68",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36111"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36103",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36103"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36099",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36099"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36092",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36092"
},
{
"published_at": "2025-09-04",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36110",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36110"
}
]
}
CERTFR-2025-AVI-0907
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans Oracle MySQL. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Oracle | MySQL | MySQL Server (Server: Optimizer) version 9.0.0 à 9.4.0 | ||
| Oracle | MySQL | MySQL Enterprise Backup version 8.4.0 à 8.4.5 | ||
| Oracle | MySQL | MySQL Cluster version 8.4.0 à 8.4.6 | ||
| Oracle | MySQL | MySQL Enterprise Backup version 9.0.0 à 9.3.0 | ||
| Oracle | MySQL | MySQL Server (InnoDB) version 9.0.0 à 9.4.0 | ||
| Oracle | MySQL | MySQL Cluster version 8.4.0 à 8.4.3 | ||
| Oracle | MySQL | MySQL Enterprise Backup version 8.0.0 à 8.0.42 | ||
| Oracle | MySQL | MySQL Server (InnoDB) version 8.0.0 à 8.0.43 | ||
| Oracle | MySQL | MySQL Server (Server: Optimizer) version 8.0.0 à 8.0.43 | ||
| Oracle | MySQL | MySQL Server (Server: Components Services) version 8.4.0 à 8.4.6 | ||
| Oracle | MySQL | MySQL Cluster version 9.0.0 à 9.4.0 | ||
| Oracle | MySQL | MySQL Cluster version 9.0.0 à 9.1.0 | ||
| Oracle | MySQL | MySQL Server (InnoDB) version 8.4.0 à 8.4.6 | ||
| Oracle | MySQL | MySQL Server (Server: DML) version 8.0.0 à 8.0.43 | ||
| Oracle | MySQL | MySQL Server (Server: Optimizer) version 8.4.0 à 8.4.6 | ||
| Oracle | MySQL | MySQL Server (Server: DML) version 8.4.0 à 8.4.6 | ||
| Oracle | MySQL | MySQL Server (Server: Components Services) version 9.0.0 à 9.4.0 | ||
| Oracle | MySQL | MySQL Cluster version 8.0.0 à 8.0.40 | ||
| Oracle | MySQL | MySQL Cluster version 8.0.0 à 8.0.43 | ||
| Oracle | MySQL | MySQL Server (Server: Components Services) version 8.0.0 à 8.0.43 | ||
| Oracle | MySQL | MySQL Server (Server: DML) version 9.0.0 à 9.4.0 | ||
| Oracle | MySQL | MySQL Workbench version 8.0.0 à 8.0.43 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "MySQL Server (Server: Optimizer) version 9.0.0 \u00e0 9.4.0",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Enterprise Backup version 8.4.0 \u00e0 8.4.5",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Cluster version 8.4.0 \u00e0 8.4.6",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Enterprise Backup version 9.0.0 \u00e0 9.3.0",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server (InnoDB) version 9.0.0 \u00e0 9.4.0",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Cluster version 8.4.0 \u00e0 8.4.3",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Enterprise Backup version 8.0.0 \u00e0 8.0.42",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server (InnoDB) version 8.0.0 \u00e0 8.0.43",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server (Server: Optimizer) version 8.0.0 \u00e0 8.0.43",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server (Server: Components Services) version 8.4.0 \u00e0 8.4.6",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Cluster version 9.0.0 \u00e0 9.4.0",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Cluster version 9.0.0 \u00e0 9.1.0",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server (InnoDB) version 8.4.0 \u00e0 8.4.6",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server (Server: DML) version 8.0.0 \u00e0 8.0.43",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server (Server: Optimizer) version 8.4.0 \u00e0 8.4.6",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server (Server: DML) version 8.4.0 \u00e0 8.4.6",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server (Server: Components Services) version 9.0.0 \u00e0 9.4.0",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Cluster version 8.0.0 \u00e0 8.0.40",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Cluster version 8.0.0 \u00e0 8.0.43",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server (Server: Components Services) version 8.0.0 \u00e0 8.0.43",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Server (Server: DML) version 9.0.0 \u00e0 9.4.0",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
},
{
"description": "MySQL Workbench version 8.0.0 \u00e0 8.0.43",
"product": {
"name": "MySQL",
"vendor": {
"name": "Oracle",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-53042",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53042"
},
{
"name": "CVE-2025-53062",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53062"
},
{
"name": "CVE-2025-5449",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5449"
},
{
"name": "CVE-2025-5987",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5987"
},
{
"name": "CVE-2025-4330",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4330"
},
{
"name": "CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"name": "CVE-2025-4138",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4138"
},
{
"name": "CVE-2025-5372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5372"
},
{
"name": "CVE-2025-53067",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53067"
},
{
"name": "CVE-2025-4877",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4877"
},
{
"name": "CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"name": "CVE-2025-4517",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4517"
},
{
"name": "CVE-2025-5318",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5318"
},
{
"name": "CVE-2025-4435",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4435"
},
{
"name": "CVE-2024-12718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12718"
},
{
"name": "CVE-2025-5351",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5351"
},
{
"name": "CVE-2025-4878",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4878"
},
{
"name": "CVE-2024-35195",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35195"
},
{
"name": "CVE-2025-53069",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53069"
},
{
"name": "CVE-2025-49795",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49795"
},
{
"name": "CVE-2025-53044",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53044"
},
{
"name": "CVE-2025-53054",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53054"
},
{
"name": "CVE-2025-53040",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53040"
},
{
"name": "CVE-2025-53045",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53045"
},
{
"name": "CVE-2025-53053",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53053"
},
{
"name": "CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"name": "CVE-2024-12133",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12133"
},
{
"name": "CVE-2025-5399",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5399"
}
],
"initial_release_date": "2025-10-22T00:00:00",
"last_revision_date": "2025-10-22T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0907",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-10-22T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Oracle MySQL. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Oracle MySQL",
"vendor_advisories": [
{
"published_at": "2025-10-21",
"title": "Bulletin de s\u00e9curit\u00e9 Oracle MySQL cpuoct2025",
"url": "https://www.oracle.com/security-alerts/cpuoct2025.html"
}
]
}
CERTFR-2025-AVI-0746
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits IBM. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et un déni de service à distance.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| IBM | Cognos Dashboards | Cognos Command Center versions 10.2.4.1 et 10.2.5 antérieures à 10.2.5 FP1 IF1 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.1.0.x antérieures à 6.1.0.2 GA | ||
| IBM | QRadar | QRadar SIEM versions 7.5.0 antérieures à QRadar 7.5.0 UP13 IF01 | ||
| IBM | Sterling | Sterling Connect:Direct pour Microsoft Windows versions 6.4.x antérieures à 6.4.0.3 | ||
| IBM | WebSphere | WebSphere Remote Server versions 9.1, 8.0 et 8.5 sans le dernier correctif de sécurité | ||
| IBM | Cognos Dashboards | Cognos Dashboards on Cloud Pak for Data versions 5.x antérieures à 5.2.1 | ||
| IBM | Sterling | Sterling Secure Proxy versions 6.2.0.x antérieures à 6.2.0.2 GA | ||
| IBM | QRadar | QRadar Incident Forensics versions 7.5.0 antérieures à QIF 7.5.0 UP13 IF01 | ||
| IBM | Sterling | Sterling External Authentication Server versions 6.1.0.x antérieures à 6.1.0.3 GA | ||
| IBM | Sterling | Sterling Connect:Direct pour Microsoft Windows versions 6.3.x antérieures à 6.3.0.6 | ||
| IBM | Db2 | Db2 Bridge versions antérieures à 1.1.1 |
References
| Title | Publication Time | Tags | |||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cognos Command Center versions 10.2.4.1 et 10.2.5 ant\u00e9rieures \u00e0 10.2.5 FP1 IF1",
"product": {
"name": "Cognos Dashboards",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.1.0.x ant\u00e9rieures \u00e0 6.1.0.2 GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar SIEM versions 7.5.0 ant\u00e9rieures \u00e0 QRadar 7.5.0 UP13 IF01",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct pour Microsoft Windows versions 6.4.x ant\u00e9rieures \u00e0 6.4.0.3",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "WebSphere Remote Server versions 9.1, 8.0 et 8.5 sans le dernier correctif de s\u00e9curit\u00e9",
"product": {
"name": "WebSphere",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Cognos Dashboards on Cloud Pak for Data versions 5.x ant\u00e9rieures \u00e0 5.2.1",
"product": {
"name": "Cognos Dashboards",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Secure Proxy versions 6.2.0.x ant\u00e9rieures \u00e0 6.2.0.2 GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "QRadar Incident Forensics versions 7.5.0 ant\u00e9rieures \u00e0 QIF 7.5.0 UP13 IF01",
"product": {
"name": "QRadar",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling External Authentication Server versions 6.1.0.x ant\u00e9rieures \u00e0 6.1.0.3 GA",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Sterling Connect:Direct pour Microsoft Windows versions 6.3.x ant\u00e9rieures \u00e0 6.3.0.6",
"product": {
"name": "Sterling",
"vendor": {
"name": "IBM",
"scada": false
}
}
},
{
"description": "Db2 Bridge versions ant\u00e9rieures \u00e0 1.1.1",
"product": {
"name": "Db2",
"vendor": {
"name": "IBM",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2024-6531",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6531"
},
{
"name": "CVE-2025-4447",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4447"
},
{
"name": "CVE-2024-21144",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21144"
},
{
"name": "CVE-2025-24789",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24789"
},
{
"name": "CVE-2022-50020",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-50020"
},
{
"name": "CVE-2025-47944",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47944"
},
{
"name": "CVE-2024-50349",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50349"
},
{
"name": "CVE-2025-46835",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46835"
},
{
"name": "CVE-2024-57980",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-57980"
},
{
"name": "CVE-2024-43420",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43420"
},
{
"name": "CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"name": "CVE-2025-22004",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22004"
},
{
"name": "CVE-2025-27614",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27614"
},
{
"name": "CVE-2022-49111",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49111"
},
{
"name": "CVE-2025-1470",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1470"
},
{
"name": "CVE-2022-49058",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49058"
},
{
"name": "CVE-2025-24970",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24970"
},
{
"name": "CVE-2024-52006",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52006"
},
{
"name": "CVE-2025-4373",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4373"
},
{
"name": "CVE-2024-13009",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-13009"
},
{
"name": "CVE-2025-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50106"
},
{
"name": "CVE-2025-48385",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48385"
},
{
"name": "CVE-2025-48060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48060"
},
{
"name": "CVE-2024-50154",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-50154"
},
{
"name": "CVE-2025-27613",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27613"
},
{
"name": "CVE-2025-30754",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30754"
},
{
"name": "CVE-2024-10917",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-10917"
},
{
"name": "CVE-2022-49136",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49136"
},
{
"name": "CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"name": "CVE-2022-49846",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49846"
},
{
"name": "CVE-2019-17543",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-17543"
},
{
"name": "CVE-2025-38086",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38086"
},
{
"name": "CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"name": "CVE-2025-7783",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7783"
},
{
"name": "CVE-2025-27152",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27152"
},
{
"name": "CVE-2025-1471",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1471"
},
{
"name": "CVE-2025-38079",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38079"
},
{
"name": "CVE-2025-20012",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20012"
},
{
"name": "CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"name": "CVE-2025-37738",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37738"
},
{
"name": "CVE-2024-53920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53920"
},
{
"name": "CVE-2025-48976",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48976"
},
{
"name": "CVE-2025-21587",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21587"
},
{
"name": "CVE-2025-52520",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52520"
},
{
"name": "CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"name": "CVE-2024-28956",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-28956"
},
{
"name": "CVE-2025-2697",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2697"
},
{
"name": "CVE-2025-47935",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47935"
},
{
"name": "CVE-2025-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50059"
},
{
"name": "CVE-2025-21928",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21928"
},
{
"name": "CVE-2025-30761",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30761"
},
{
"name": "CVE-2024-47535",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47535"
},
{
"name": "CVE-2025-1494",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1494"
},
{
"name": "CVE-2025-1994",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-1994"
},
{
"name": "CVE-2025-52434",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52434"
},
{
"name": "CVE-2025-24495",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24495"
},
{
"name": "CVE-2025-30698",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30698"
},
{
"name": "CVE-2022-49977",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49977"
},
{
"name": "CVE-2024-54661",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-54661"
},
{
"name": "CVE-2025-37890",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-37890"
},
{
"name": "CVE-2025-22020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22020"
},
{
"name": "CVE-2025-27533",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-27533"
},
{
"name": "CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"name": "CVE-2025-55668",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55668"
},
{
"name": "CVE-2025-25193",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-25193"
},
{
"name": "CVE-2024-58002",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-58002"
},
{
"name": "CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"name": "CVE-2025-21905",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21905"
},
{
"name": "CVE-2024-23337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-23337"
},
{
"name": "CVE-2025-30749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30749"
},
{
"name": "CVE-2025-38052",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-38052"
},
{
"name": "CVE-2025-2900",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2900"
},
{
"name": "CVE-2025-53506",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53506"
},
{
"name": "CVE-2019-5427",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-5427"
},
{
"name": "CVE-2022-49788",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-49788"
},
{
"name": "CVE-2025-20623",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-20623"
},
{
"name": "CVE-2025-48997",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48997"
},
{
"name": "CVE-2020-5260",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-5260"
},
{
"name": "CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"name": "CVE-2025-21919",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21919"
},
{
"name": "CVE-2024-21131",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-21131"
},
{
"name": "CVE-2024-34397",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-34397"
},
{
"name": "CVE-2025-21991",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21991"
},
{
"name": "CVE-2025-7338",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7338"
},
{
"name": "CVE-2025-24790",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24790"
},
{
"name": "CVE-2024-45332",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45332"
},
{
"name": "CVE-2025-47273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47273"
},
{
"name": "CVE-2025-23150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23150"
}
],
"initial_release_date": "2025-08-29T00:00:00",
"last_revision_date": "2025-08-29T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0746",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-08-29T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Falsification de requ\u00eates c\u00f4t\u00e9 serveur (SSRF)"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits IBM. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et un d\u00e9ni de service \u00e0 distance.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits IBM",
"vendor_advisories": [
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243411",
"url": "https://www.ibm.com/support/pages/node/7243411"
},
{
"published_at": "2025-08-22",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7242915",
"url": "https://www.ibm.com/support/pages/node/7242915"
},
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243372",
"url": "https://www.ibm.com/support/pages/node/7243372"
},
{
"published_at": "2025-08-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7242159",
"url": "https://www.ibm.com/support/pages/node/7242159"
},
{
"published_at": "2025-08-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243146",
"url": "https://www.ibm.com/support/pages/node/7243146"
},
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7242161",
"url": "https://www.ibm.com/support/pages/node/7242161"
},
{
"published_at": "2025-08-26",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243144",
"url": "https://www.ibm.com/support/pages/node/7243144"
},
{
"published_at": "2025-08-25",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243011",
"url": "https://www.ibm.com/support/pages/node/7243011"
},
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 IBM 7243373",
"url": "https://www.ibm.com/support/pages/node/7243373"
}
]
}
CERTFR-2025-AVI-0791
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits Apple. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, une élévation de privilèges et une atteinte à la confidentialité des données.
Apple indique que la vulnérabilité CVE-2025-43300 est activement exploitée.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Apple | iPadOS | iPadOS versions antérieures à 26 | ||
| Apple | watchOS | watchOS versions antérieures à 26 | ||
| Apple | iOS | iOS versions 16.x antérieures à 16.7.12 | ||
| Apple | macOS | macOS Sonoma versions antérieures à 14.8 | ||
| Apple | tvOS | tvOS versions antérieures à 26 | ||
| Apple | macOS | macOS Sequoia versions antérieures à 15.7 | ||
| Apple | iOS | iOS versions antérieures à 26 | ||
| Apple | iOS | iOS versions 15.x antérieures à 15.8.5 | ||
| Apple | iOS | iOS versions 18.x antérieures à 18.7 | ||
| Apple | visionOS | visionOS versions antérieures à 26 | ||
| Apple | Xcode | Xcode versions antérieures à 26 | ||
| Apple | Safari | Safari versions antérieures à 26 | ||
| Apple | iPadOS | iPadOS versions 15.x antérieures à 15.8.5 | ||
| Apple | iPadOS | iPadOS versions 16.x antérieures à 16.7.12 | ||
| Apple | macOS | macOS Tahoe versions antérieures à 26 | ||
| Apple | iPadOS | iPadOS versions 18.x antérieures à 18.7 |
References
| Title | Publication Time | Tags | ||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||||||||||||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "iPadOS versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "iPadOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "watchOS versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "watchOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions 16.x ant\u00e9rieures \u00e0 16.7.12",
"product": {
"name": "iOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Sonoma versions ant\u00e9rieures \u00e0 14.8",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "tvOS versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "tvOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Sequoia versions ant\u00e9rieures \u00e0 15.7",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "iOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions 15.x ant\u00e9rieures \u00e0 15.8.5",
"product": {
"name": "iOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iOS versions 18.x ant\u00e9rieures \u00e0 18.7",
"product": {
"name": "iOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "visionOS versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "visionOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Xcode versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "Xcode",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "Safari versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "Safari",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iPadOS versions 15.x ant\u00e9rieures \u00e0 15.8.5",
"product": {
"name": "iPadOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iPadOS versions 16.x ant\u00e9rieures \u00e0 16.7.12",
"product": {
"name": "iPadOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "macOS Tahoe versions ant\u00e9rieures \u00e0 26",
"product": {
"name": "macOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
},
{
"description": "iPadOS versions 18.x ant\u00e9rieures \u00e0 18.7",
"product": {
"name": "iPadOS",
"vendor": {
"name": "Apple",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-43292",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43292"
},
{
"name": "CVE-2025-43372",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43372"
},
{
"name": "CVE-2025-43332",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43332"
},
{
"name": "CVE-2025-31270",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31270"
},
{
"name": "CVE-2025-43362",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43362"
},
{
"name": "CVE-2025-43319",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43319"
},
{
"name": "CVE-2025-43340",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43340"
},
{
"name": "CVE-2025-43327",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43327"
},
{
"name": "CVE-2025-30468",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30468"
},
{
"name": "CVE-2025-43359",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43359"
},
{
"name": "CVE-2025-43262",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43262"
},
{
"name": "CVE-2024-27280",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-27280"
},
{
"name": "CVE-2025-31269",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31269"
},
{
"name": "CVE-2025-43354",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43354"
},
{
"name": "CVE-2025-43326",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43326"
},
{
"name": "CVE-2025-43204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43204"
},
{
"name": "CVE-2025-43273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43273"
},
{
"name": "CVE-2025-43347",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43347"
},
{
"name": "CVE-2025-43302",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43302"
},
{
"name": "CVE-2025-43321",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43321"
},
{
"name": "CVE-2025-31254",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31254"
},
{
"name": "CVE-2025-43299",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43299"
},
{
"name": "CVE-2025-43316",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43316"
},
{
"name": "CVE-2025-43263",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43263"
},
{
"name": "CVE-2025-31255",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31255"
},
{
"name": "CVE-2025-43375",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43375"
},
{
"name": "CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"name": "CVE-2025-43355",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43355"
},
{
"name": "CVE-2025-43207",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43207"
},
{
"name": "CVE-2025-43285",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43285"
},
{
"name": "CVE-2025-43370",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43370"
},
{
"name": "CVE-2025-43312",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43312"
},
{
"name": "CVE-2025-43317",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43317"
},
{
"name": "CVE-2025-31271",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31271"
},
{
"name": "CVE-2025-43208",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43208"
},
{
"name": "CVE-2025-43283",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43283"
},
{
"name": "CVE-2025-48384",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48384"
},
{
"name": "CVE-2025-43277",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43277"
},
{
"name": "CVE-2025-43325",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43325"
},
{
"name": "CVE-2025-43231",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43231"
},
{
"name": "CVE-2025-24197",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24197"
},
{
"name": "CVE-2025-43358",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43358"
},
{
"name": "CVE-2025-43328",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43328"
},
{
"name": "CVE-2025-43368",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43368"
},
{
"name": "CVE-2025-43315",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43315"
},
{
"name": "CVE-2025-43331",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43331"
},
{
"name": "CVE-2025-43310",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43310"
},
{
"name": "CVE-2025-43333",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43333"
},
{
"name": "CVE-2025-43203",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43203"
},
{
"name": "CVE-2025-43307",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43307"
},
{
"name": "CVE-2025-43297",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43297"
},
{
"name": "CVE-2025-43190",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43190"
},
{
"name": "CVE-2025-24088",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24088"
},
{
"name": "CVE-2025-43293",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43293"
},
{
"name": "CVE-2025-43343",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43343"
},
{
"name": "CVE-2025-43294",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43294"
},
{
"name": "CVE-2025-43286",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43286"
},
{
"name": "CVE-2025-43353",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43353"
},
{
"name": "CVE-2025-43356",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43356"
},
{
"name": "CVE-2025-43330",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43330"
},
{
"name": "CVE-2025-43272",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43272"
},
{
"name": "CVE-2025-31259",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31259"
},
{
"name": "CVE-2025-31268",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31268"
},
{
"name": "CVE-2025-43366",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43366"
},
{
"name": "CVE-2025-43298",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43298"
},
{
"name": "CVE-2025-43369",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43369"
},
{
"name": "CVE-2025-43308",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43308"
},
{
"name": "CVE-2025-43346",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43346"
},
{
"name": "CVE-2025-40909",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-40909"
},
{
"name": "CVE-2025-43337",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43337"
},
{
"name": "CVE-2025-24133",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24133"
},
{
"name": "CVE-2025-43279",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43279"
},
{
"name": "CVE-2025-43314",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43314"
},
{
"name": "CVE-2025-43300",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43300"
},
{
"name": "CVE-2025-43342",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43342"
},
{
"name": "CVE-2025-43349",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43349"
},
{
"name": "CVE-2025-43341",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43341"
},
{
"name": "CVE-2025-43301",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43301"
},
{
"name": "CVE-2025-43318",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43318"
},
{
"name": "CVE-2025-43344",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43344"
},
{
"name": "CVE-2025-43311",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43311"
},
{
"name": "CVE-2025-43287",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43287"
},
{
"name": "CVE-2025-43303",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43303"
},
{
"name": "CVE-2025-43304",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43304"
},
{
"name": "CVE-2025-43291",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43291"
},
{
"name": "CVE-2025-43329",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43329"
},
{
"name": "CVE-2025-43357",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43357"
},
{
"name": "CVE-2025-43367",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43367"
},
{
"name": "CVE-2025-43371",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43371"
},
{
"name": "CVE-2025-43295",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43295"
},
{
"name": "CVE-2025-43305",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43305"
}
],
"initial_release_date": "2025-09-16T00:00:00",
"last_revision_date": "2025-09-16T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0791",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-09-16T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Apple. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, une \u00e9l\u00e9vation de privil\u00e8ges et une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n\nApple indique que la vuln\u00e9rabilit\u00e9 CVE-2025-43300 est activement exploit\u00e9e.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Apple",
"vendor_advisories": [
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125112",
"url": "https://support.apple.com/en-us/125112"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125116",
"url": "https://support.apple.com/en-us/125116"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125110",
"url": "https://support.apple.com/en-us/125110"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125115",
"url": "https://support.apple.com/en-us/125115"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125141",
"url": "https://support.apple.com/en-us/125141"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125117",
"url": "https://support.apple.com/en-us/125117"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125114",
"url": "https://support.apple.com/en-us/125114"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125108",
"url": "https://support.apple.com/en-us/125108"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125111",
"url": "https://support.apple.com/en-us/125111"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125109",
"url": "https://support.apple.com/en-us/125109"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125142",
"url": "https://support.apple.com/en-us/125142"
},
{
"published_at": "2025-09-15",
"title": "Bulletin de s\u00e9curit\u00e9 Apple 125113",
"url": "https://support.apple.com/en-us/125113"
}
]
}
CERTFR-2025-AVI-0938
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits VMware. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| VMware | Tanzu | Tanzu pour Postgres versions antérieures à 4.3.1 sur Kubernetes | ||
| VMware | Tanzu Greenplum | Tanzu Greenplum versions antérieures à 6.31.0 | ||
| VMware | Tanzu | Tanzu pour Postgres versions antérieures à 13.22.0, 14.19.0, 15.14.0, 16.10.0 et 17.6.0 | ||
| VMware | Tanzu Greenplum | Tanzu Greenplum versions antérieures à 7.6.0 |
References
| Title | Publication Time | Tags | |||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Tanzu pour Postgres versions ant\u00e9rieures \u00e0 4.3.1 sur Kubernetes",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Greenplum versions ant\u00e9rieures \u00e0 6.31.0",
"product": {
"name": "Tanzu Greenplum",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu pour Postgres versions ant\u00e9rieures \u00e0 13.22.0, 14.19.0, 15.14.0, 16.10.0 et 17.6.0",
"product": {
"name": "Tanzu",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Greenplum versions ant\u00e9rieures \u00e0 7.6.0",
"product": {
"name": "Tanzu Greenplum",
"vendor": {
"name": "VMware",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-6395",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6395"
},
{
"name": "CVE-2023-52356",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52356"
},
{
"name": "CVE-2025-8715",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8715"
},
{
"name": "CVE-2022-39176",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39176"
},
{
"name": "CVE-2025-9231",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9231"
},
{
"name": "CVE-2023-4504",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-4504"
},
{
"name": "CVE-2021-38593",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-38593"
},
{
"name": "CVE-2025-5222",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5222"
},
{
"name": "CVE-2020-26557",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26557"
},
{
"name": "CVE-2019-25059",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-25059"
},
{
"name": "CVE-2024-46951",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46951"
},
{
"name": "CVE-2025-31273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31273"
},
{
"name": "CVE-2025-8941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8941"
},
{
"name": "CVE-2025-32913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32913"
},
{
"name": "CVE-2021-31535",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-31535"
},
{
"name": "CVE-2023-37920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-37920"
},
{
"name": "CVE-2022-39177",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-39177"
},
{
"name": "CVE-2025-0913",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-0913"
},
{
"name": "CVE-2025-47907",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47907"
},
{
"name": "CVE-2025-2720",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2720"
},
{
"name": "CVE-2024-46956",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46956"
},
{
"name": "CVE-2025-58060",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-58060"
},
{
"name": "CVE-2025-49794",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49794"
},
{
"name": "CVE-2024-46953",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46953"
},
{
"name": "CVE-2025-24216",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24216"
},
{
"name": "CVE-2025-43212",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43212"
},
{
"name": "CVE-2025-8176",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8176"
},
{
"name": "CVE-2025-24150",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24150"
},
{
"name": "CVE-2021-45078",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45078"
},
{
"name": "CVE-2023-2222",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2222"
},
{
"name": "CVE-2024-8176",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-8176"
},
{
"name": "CVE-2025-2784",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2784"
},
{
"name": "CVE-2022-4055",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-4055"
},
{
"name": "CVE-2025-50106",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50106"
},
{
"name": "CVE-2022-44840",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-44840"
},
{
"name": "CVE-2024-44192",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-44192"
},
{
"name": "CVE-2025-47910",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47910"
},
{
"name": "CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"name": "CVE-2025-47906",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47906"
},
{
"name": "CVE-2025-8194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8194"
},
{
"name": "CVE-2025-2723",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2723"
},
{
"name": "CVE-2025-31278",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31278"
},
{
"name": "CVE-2020-26559",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26559"
},
{
"name": "CVE-2023-46751",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-46751"
},
{
"name": "CVE-2025-4517",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4517"
},
{
"name": "CVE-2025-2724",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-2724"
},
{
"name": "CVE-2025-4674",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4674"
},
{
"name": "CVE-2023-48161",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-48161"
},
{
"name": "CVE-2022-30294",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-30294"
},
{
"name": "CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"name": "CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"name": "CVE-2025-43368",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43368"
},
{
"name": "CVE-2023-52355",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-52355"
},
{
"name": "CVE-2024-46954",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46954"
},
{
"name": "CVE-2024-12718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12718"
},
{
"name": "CVE-2024-53920",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-53920"
},
{
"name": "CVE-2025-9232",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9232"
},
{
"name": "CVE-2020-26556",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26556"
},
{
"name": "CVE-2025-8713",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8713"
},
{
"name": "CVE-2025-21587",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-21587"
},
{
"name": "CVE-2005-2541",
"url": "https://www.cve.org/CVERecord?id=CVE-2005-2541"
},
{
"name": "CVE-2021-3826",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3826"
},
{
"name": "CVE-2025-9900",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9900"
},
{
"name": "CVE-2024-52533",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-52533"
},
{
"name": "CVE-2025-32914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32914"
},
{
"name": "CVE-2021-32256",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-32256"
},
{
"name": "CVE-2025-43343",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43343"
},
{
"name": "CVE-2025-32990",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32990"
},
{
"name": "CVE-2025-9288",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9288"
},
{
"name": "CVE-2025-4802",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4802"
},
{
"name": "CVE-2025-32989",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32989"
},
{
"name": "CVE-2025-22874",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22874"
},
{
"name": "CVE-2025-43272",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43272"
},
{
"name": "CVE-2025-50059",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-50059"
},
{
"name": "CVE-2025-6558",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6558"
},
{
"name": "CVE-2025-8714",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8714"
},
{
"name": "CVE-2025-32906",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32906"
},
{
"name": "CVE-2025-4673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4673"
},
{
"name": "CVE-2020-26560",
"url": "https://www.cve.org/CVERecord?id=CVE-2020-26560"
},
{
"name": "CVE-2025-32988",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32988"
},
{
"name": "CVE-2024-55549",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-55549"
},
{
"name": "CVE-2025-43216",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43216"
},
{
"name": "CVE-2023-2004",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-2004"
},
{
"name": "CVE-2025-52194",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52194"
},
{
"name": "CVE-2025-6021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6021"
},
{
"name": "CVE-2023-24607",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-24607"
},
{
"name": "CVE-2025-24209",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-24209"
},
{
"name": "CVE-2024-0444",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-0444"
},
{
"name": "CVE-2025-32415",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32415"
},
{
"name": "CVE-2017-17973",
"url": "https://www.cve.org/CVERecord?id=CVE-2017-17973"
},
{
"name": "CVE-2025-30749",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30749"
},
{
"name": "CVE-2025-43342",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-43342"
},
{
"name": "CVE-2025-9230",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9230"
},
{
"name": "CVE-2025-32049",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32049"
},
{
"name": "CVE-2025-4948",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4948"
},
{
"name": "CVE-2025-49796",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49796"
},
{
"name": "CVE-2024-4453",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-4453"
},
{
"name": "CVE-2025-31257",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31257"
},
{
"name": "CVE-2025-5914",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-5914"
},
{
"name": "CVE-2024-24786",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-24786"
},
{
"name": "CVE-2025-11021",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-11021"
},
{
"name": "CVE-2023-1579",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-1579"
},
{
"name": "CVE-2024-46952",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-46952"
},
{
"name": "CVE-2025-47273",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-47273"
},
{
"name": "CVE-2025-7345",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7345"
},
{
"name": "CVE-2025-30427",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30427"
},
{
"name": "CVE-2025-32911",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-32911"
}
],
"initial_release_date": "2025-10-30T00:00:00",
"last_revision_date": "2025-10-30T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0938",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-10-30T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits VMware. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware",
"vendor_advisories": [
{
"published_at": "2025-10-29",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36277",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36277"
},
{
"published_at": "2025-10-29",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36284",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36284"
},
{
"published_at": "2025-10-29",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36281",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36281"
},
{
"published_at": "2025-10-29",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36282",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36282"
},
{
"published_at": "2025-10-29",
"title": "Bulletin de s\u00e9curit\u00e9 VMware 36283",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36283"
}
]
}
CERTFR-2025-AVI-0754
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans les produits VMware. Elles permettent à un attaquant de provoquer un problème de sécurité non spécifié par l'éditeur.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| VMware | Tanzu Gemfire | Tanzu GemFire Management Console versions antérieures à 1.4.0 | ||
| VMware | Tanzu Greenplum | Tanzu Greenplum versions antérieures à 7.5.4 |
References
| Title | Publication Time | Tags | ||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Tanzu GemFire Management Console versions ant\u00e9rieures \u00e0 1.4.0",
"product": {
"name": "Tanzu Gemfire",
"vendor": {
"name": "VMware",
"scada": false
}
}
},
{
"description": "Tanzu Greenplum versions ant\u00e9rieures \u00e0 7.5.4",
"product": {
"name": "Tanzu Greenplum",
"vendor": {
"name": "VMware",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-31651",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31651"
},
{
"name": "CVE-2025-22872",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22872"
},
{
"name": "CVE-2025-8941",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-8941"
},
{
"name": "CVE-2023-37920",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-37920"
},
{
"name": "CVE-2025-22228",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22228"
},
{
"name": "CVE-2021-45078",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-45078"
},
{
"name": "CVE-2024-45341",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45341"
},
{
"name": "CVE-2024-35255",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-35255"
},
{
"name": "CVE-2025-49125",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49125"
},
{
"name": "CVE-2024-6104",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-6104"
},
{
"name": "CVE-2022-44840",
"url": "https://www.cve.org/CVERecord?id=CVE-2022-44840"
},
{
"name": "CVE-2025-22866",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22866"
},
{
"name": "CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"name": "CVE-2025-4517",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4517"
},
{
"name": "CVE-2025-4674",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4674"
},
{
"name": "CVE-2025-52999",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52999"
},
{
"name": "CVE-2025-6020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6020"
},
{
"name": "CVE-2024-45336",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45336"
},
{
"name": "CVE-2025-7425",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-7425"
},
{
"name": "CVE-2025-22868",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22868"
},
{
"name": "CVE-2024-12718",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-12718"
},
{
"name": "CVE-2024-45337",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-45337"
},
{
"name": "CVE-2025-55163",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55163"
},
{
"name": "CVE-2025-9288",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-9288"
},
{
"name": "CVE-2025-48989",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48989"
},
{
"name": "CVE-2024-41110",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-41110"
},
{
"name": "CVE-2025-48988",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48988"
},
{
"name": "CVE-2025-54410",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54410"
},
{
"name": "CVE-2025-52434",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-52434"
},
{
"name": "CVE-2025-4673",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-4673"
},
{
"name": "CVE-2025-22871",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22871"
},
{
"name": "CVE-2025-22869",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22869"
},
{
"name": "CVE-2025-22870",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22870"
},
{
"name": "CVE-2025-46701",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-46701"
},
{
"name": "CVE-2025-22235",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-22235"
},
{
"name": "CVE-2025-48924",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48924"
},
{
"name": "CVE-2025-31650",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-31650"
},
{
"name": "CVE-2025-30204",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-30204"
},
{
"name": "CVE-2025-41242",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-41242"
},
{
"name": "CVE-2025-48734",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-48734"
}
],
"initial_release_date": "2025-09-04T00:00:00",
"last_revision_date": "2025-09-04T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0754",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-09-04T00:00:00.000000"
}
],
"risks": [
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits VMware. Elles permettent \u00e0 un attaquant de provoquer un probl\u00e8me de s\u00e9curit\u00e9 non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits VMware",
"vendor_advisories": [
{
"published_at": "2025-09-03",
"title": "Bulletin de s\u00e9curit\u00e9 VMware TNZ-2025-0094",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36085"
},
{
"published_at": "2025-09-03",
"title": "Bulletin de s\u00e9curit\u00e9 VMware TNZ-2025-0095",
"url": "https://support.broadcom.com/web/ecx/support-content-notification/-/external/content/SecurityAdvisories/0/36086"
}
]
}
CERTFR-2025-AVI-0740
Vulnerability from certfr_avis
De multiples vulnérabilités ont été découvertes dans Tenable Security Center. Certaines d'entre elles permettent à un attaquant de provoquer un déni de service à distance, une atteinte à la confidentialité des données et une atteinte à l'intégrité des données.
Solutions
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
Impacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Tenable | Security Center | Security Center sans le correctif de sécurité Patch SC-202508.1 |
References
| Title | Publication Time | Tags | |||
|---|---|---|---|---|---|
|
|||||
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Security Center sans le correctif de s\u00e9curit\u00e9 Patch SC-202508.1",
"product": {
"name": "Security Center",
"vendor": {
"name": "Tenable",
"scada": false
}
}
}
],
"affected_systems_content": "",
"content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
"cves": [
{
"name": "CVE-2025-23048",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-23048"
},
{
"name": "CVE-2025-49812",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49812"
},
{
"name": "CVE-2024-43204",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-43204"
},
{
"name": "CVE-2025-6965",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6965"
},
{
"name": "CVE-2025-53020",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-53020"
},
{
"name": "CVE-2024-47252",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-47252"
},
{
"name": "CVE-2025-6491",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-6491"
},
{
"name": "CVE-2025-49630",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-49630"
},
{
"name": "CVE-2024-42516",
"url": "https://www.cve.org/CVERecord?id=CVE-2024-42516"
}
],
"initial_release_date": "2025-08-29T00:00:00",
"last_revision_date": "2025-08-29T00:00:00",
"links": [],
"reference": "CERTFR-2025-AVI-0740",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2025-08-29T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
},
{
"description": "Non sp\u00e9cifi\u00e9 par l\u0027\u00e9diteur"
},
{
"description": "Contournement de la politique de s\u00e9curit\u00e9"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Tenable Security Center. Certaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance, une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es et une atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es.",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans Tenable Security Center",
"vendor_advisories": [
{
"published_at": "2025-08-28",
"title": "Bulletin de s\u00e9curit\u00e9 Tenable tns-2025-17",
"url": "https://www.tenable.com/security/tns-2025-17"
}
]
}
ghsa-2m69-gcr7-jv3q
Vulnerability from github
Published
2025-07-15 15:31
Modified
2025-11-03 21:34
Severity ?
VLAI Severity ?
Details
There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.
{
"affected": [],
"aliases": [
"CVE-2025-6965"
],
"database_specific": {
"cwe_ids": [
"CWE-197"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-07-15T14:15:31Z",
"severity": "HIGH"
},
"details": "There exists a vulnerability in SQLite versions before 3.50.2 where the number of aggregate terms could exceed the number of columns available. This could lead to a memory corruption issue. We recommend upgrading to version 3.50.2 or above.",
"id": "GHSA-2m69-gcr7-jv3q",
"modified": "2025-11-03T21:34:07Z",
"published": "2025-07-15T15:31:00Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-6965"
},
{
"type": "WEB",
"url": "https://www.sqlite.org/src/info/5508b56fd24016c13981ec280ecdd833007c9d8dd595edb295b984c2b487b5c8"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2025/Sep/49"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2025/Sep/53"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2025/Sep/56"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2025/Sep/57"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2025/Sep/58"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:N/VC:L/VI:H/VA:L/SC:L/SI:H/SA:L/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:N/AU:N/R:U/V:D/RE:L/U:Green",
"type": "CVSS_V4"
}
]
}
msrc_cve-2025-6965
Vulnerability from csaf_microsoft
Published
2025-07-02 00:00
Modified
2025-08-14 00:00
Summary
Integer Truncation on SQLite
Notes
Additional Resources
To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle
Disclaimer
The information provided in the Microsoft Knowledge Base is provided \"as is\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.
{
"document": {
"category": "csaf_vex",
"csaf_version": "2.0",
"distribution": {
"text": "Public",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en-US",
"notes": [
{
"category": "general",
"text": "To determine the support lifecycle for your software, see the Microsoft Support Lifecycle: https://support.microsoft.com/lifecycle",
"title": "Additional Resources"
},
{
"category": "legal_disclaimer",
"text": "The information provided in the Microsoft Knowledge Base is provided \\\"as is\\\" without warranty of any kind. Microsoft disclaims all warranties, either express or implied, including the warranties of merchantability and fitness for a particular purpose. In no event shall Microsoft Corporation or its suppliers be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages, even if Microsoft Corporation or its suppliers have been advised of the possibility of such damages. Some states do not allow the exclusion or limitation of liability for consequential or incidental damages so the foregoing limitation may not apply.",
"title": "Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "secure@microsoft.com",
"name": "Microsoft Security Response Center",
"namespace": "https://msrc.microsoft.com"
},
"references": [
{
"category": "self",
"summary": "CVE-2025-6965 Integer Truncation on SQLite - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2025/msrc_cve-2025-6965.json"
},
{
"category": "external",
"summary": "Microsoft Support Lifecycle",
"url": "https://support.microsoft.com/lifecycle"
},
{
"category": "external",
"summary": "Common Vulnerability Scoring System",
"url": "https://www.first.org/cvss"
}
],
"title": "Integer Truncation on SQLite",
"tracking": {
"current_release_date": "2025-08-14T00:00:00.000Z",
"generator": {
"date": "2025-10-20T03:36:12.203Z",
"engine": {
"name": "MSRC Generator",
"version": "1.0"
}
},
"id": "msrc_CVE-2025-6965",
"initial_release_date": "2025-07-02T00:00:00.000Z",
"revision_history": [
{
"date": "2025-08-14T00:00:00.000Z",
"legacy_version": "1",
"number": "1",
"summary": "Information published."
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "2.0",
"product": {
"name": "CBL Mariner 2.0",
"product_id": "17086"
}
},
{
"category": "product_version",
"name": "3.0",
"product": {
"name": "Azure Linux 3.0",
"product_id": "17084"
}
}
],
"category": "product_name",
"name": "Azure Linux"
},
{
"branches": [
{
"category": "product_version_range",
"name": "\u003ccbl2 sqlite 3.39.2-4",
"product": {
"name": "\u003ccbl2 sqlite 3.39.2-4",
"product_id": "4"
}
},
{
"category": "product_version",
"name": "cbl2 sqlite 3.39.2-4",
"product": {
"name": "cbl2 sqlite 3.39.2-4",
"product_id": "19582"
}
},
{
"category": "product_version_range",
"name": "\u003cazl3 sqlite 3.44.0-2",
"product": {
"name": "\u003cazl3 sqlite 3.44.0-2",
"product_id": "1"
}
},
{
"category": "product_version",
"name": "azl3 sqlite 3.44.0-2",
"product": {
"name": "azl3 sqlite 3.44.0-2",
"product_id": "20296"
}
},
{
"category": "product_version_range",
"name": "\u003ccbl2 sqlite 3.39.2-3",
"product": {
"name": "\u003ccbl2 sqlite 3.39.2-3",
"product_id": "3"
}
},
{
"category": "product_version",
"name": "cbl2 sqlite 3.39.2-3",
"product": {
"name": "cbl2 sqlite 3.39.2-3",
"product_id": "19759"
}
}
],
"category": "product_name",
"name": "sqlite"
},
{
"category": "product_name",
"name": "azl3 libdb 5.3.28-9",
"product": {
"name": "azl3 libdb 5.3.28-9",
"product_id": "5"
}
},
{
"category": "product_name",
"name": "cbl2 libdb 5.3.28-7",
"product": {
"name": "cbl2 libdb 5.3.28-7",
"product_id": "2"
}
}
],
"category": "vendor",
"name": "Microsoft"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 sqlite 3.39.2-4 as a component of CBL Mariner 2.0",
"product_id": "17086-4"
},
"product_reference": "4",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 sqlite 3.39.2-4 as a component of CBL Mariner 2.0",
"product_id": "19582-17086"
},
"product_reference": "19582",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003cazl3 sqlite 3.44.0-2 as a component of Azure Linux 3.0",
"product_id": "17084-1"
},
"product_reference": "1",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 sqlite 3.44.0-2 as a component of Azure Linux 3.0",
"product_id": "20296-17084"
},
"product_reference": "20296",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "\u003ccbl2 sqlite 3.39.2-3 as a component of CBL Mariner 2.0",
"product_id": "17086-3"
},
"product_reference": "3",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 sqlite 3.39.2-3 as a component of CBL Mariner 2.0",
"product_id": "19759-17086"
},
"product_reference": "19759",
"relates_to_product_reference": "17086"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "azl3 libdb 5.3.28-9 as a component of Azure Linux 3.0",
"product_id": "17084-5"
},
"product_reference": "5",
"relates_to_product_reference": "17084"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cbl2 libdb 5.3.28-7 as a component of CBL Mariner 2.0",
"product_id": "17086-2"
},
"product_reference": "2",
"relates_to_product_reference": "17086"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-6965",
"cwe": {
"id": "CWE-197",
"name": "Numeric Truncation Error"
},
"flags": [
{
"label": "component_not_present",
"product_ids": [
"17084-5",
"17086-2"
]
}
],
"notes": [
{
"category": "general",
"text": "Google",
"title": "Assigning CNA"
}
],
"product_status": {
"fixed": [
"19582-17086",
"20296-17084",
"19759-17086"
],
"known_affected": [
"17086-4",
"17084-1",
"17086-3"
],
"known_not_affected": [
"17084-5",
"17086-2"
]
},
"references": [
{
"category": "self",
"summary": "CVE-2025-6965 Integer Truncation on SQLite - VEX",
"url": "https://msrc.microsoft.com/csaf/vex/2025/msrc_cve-2025-6965.json"
}
],
"remediations": [
{
"category": "vendor_fix",
"date": "2025-08-14T00:00:00.000Z",
"details": "3.39.2-4:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17086-4",
"17086-3"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
},
{
"category": "vendor_fix",
"date": "2025-08-14T00:00:00.000Z",
"details": "3.44.0-2:Security Update:https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade",
"product_ids": [
"17084-1"
],
"url": "https://learn.microsoft.com/en-us/azure/azure-linux/tutorial-azure-linux-upgrade"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"environmentalsScore": 0.0,
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"temporalScore": 9.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"17086-4",
"17084-1",
"17086-3"
]
}
],
"title": "Integer Truncation on SQLite"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…