rhsa-2025:16040
Vulnerability from csaf_redhat
Published
2025-09-17 06:34
Modified
2025-09-25 18:50
Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.0.5
Notes
Topic
Red Hat OpenShift Service Mesh 3.0.5
This update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Service Mesh 3.0.5, which is based on the open source Istio project, addresses a variety of problems in a microservice architecture by creating a centralized point of control in an application.
Security Fix(es):
* istio-proxyv2-rhel9: Use after free in DNS cache (CVE-2025-54588)
* istio-proxyv2-rhel9: oAuth2 Filter Signout route will not clear cookies because of missing "secure;" flag (CVE-2025-55162)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh 3.0.5\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh 3.0.5, which is based on the open source Istio project, addresses a variety of problems in a microservice architecture by creating a centralized point of control in an application.\nSecurity Fix(es):\n* istio-proxyv2-rhel9: Use after free in DNS cache (CVE-2025-54588)\n* istio-proxyv2-rhel9: oAuth2 Filter Signout route will not clear cookies because of missing \"secure;\" flag (CVE-2025-55162)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:16040",
"url": "https://access.redhat.com/errata/RHSA-2025:16040"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-54588",
"url": "https://access.redhat.com/security/cve/CVE-2025-54588"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-55162",
"url": "https://access.redhat.com/security/cve/CVE-2025-55162"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/cve-2025-54588",
"url": "https://access.redhat.com/security/cve/cve-2025-54588"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/cve-2025-55162",
"url": "https://access.redhat.com/security/cve/cve-2025-55162"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification",
"url": "https://access.redhat.com/security/updates/classification"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_16040.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.0.5",
"tracking": {
"current_release_date": "2025-09-25T18:50:44+00:00",
"generator": {
"date": "2025-09-25T18:50:44+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.8"
}
},
"id": "RHSA-2025:16040",
"initial_release_date": "2025-09-17T06:34:26+00:00",
"revision_history": [
{
"date": "2025-09-17T06:34:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-17T06:34:29+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-09-25T18:50:44+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Service Mesh 3.0",
"product": {
"name": "Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:3.0::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-sail-operator-bundle@sha256%3A8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.0.5-1757571023"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel9@sha256%3Aee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.24.6-1757501978"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.0.4-1757399855"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel9-operator@sha256%3A1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.0.5-1757344982"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-pilot-rhel9@sha256%3A33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.24.6-1757501992"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-proxyv2-rhel9@sha256%3Abfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.24.6-1757566151"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-ztunnel-rhel9@sha256%3A1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh-dev-preview-beta\u0026tag=1.24.6-1757400466"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel9@sha256%3A5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.24.6-1757501978"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.0.4-1757399855"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel9-operator@sha256%3A0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.0.5-1757344982"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-pilot-rhel9@sha256%3A473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.24.6-1757501992"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-proxyv2-rhel9@sha256%3Ab1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.24.6-1757566151"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-ztunnel-rhel9@sha256%3A36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh-dev-preview-beta\u0026tag=1.24.6-1757400466"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel9@sha256%3Ad9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.24.6-1757501978"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.0.4-1757399855"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel9-operator@sha256%3Aec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.0.5-1757344982"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-pilot-rhel9@sha256%3A969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.24.6-1757501992"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-proxyv2-rhel9@sha256%3A3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.24.6-1757566151"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-ztunnel-rhel9@sha256%3A810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh-dev-preview-beta\u0026tag=1.24.6-1757400466"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel9@sha256%3Adf31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.24.6-1757501978"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.0.4-1757399855"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel9-operator@sha256%3A9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.0.5-1757344982"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-pilot-rhel9@sha256%3A1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.24.6-1757501992"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-proxyv2-rhel9@sha256%3A28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.24.6-1757566151"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-ztunnel-rhel9@sha256%3Abceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh-dev-preview-beta\u0026tag=1.24.6-1757400466"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64 as a component of Red Hat OpenShift Service Mesh 3.0",
"product_id": "Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.0"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-54588",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-08-26T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2391073"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was discovered in how the Envoy proxy handles its DNS cache. This issue could allow a specific sequence of DNS lookups to cause the Envoy process to crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoyproxy/envoy: Use after free in DNS cache",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-54588"
},
{
"category": "external",
"summary": "RHBZ#2391073",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2391073"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-54588",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-54588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-54588"
}
],
"release_date": "2025-09-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-17T06:34:26+00:00",
"details": "See Red Hat OpenShift Service Mesh 3.0.5 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.0",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:16040"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "envoyproxy/envoy: Use after free in DNS cache"
},
{
"cve": "CVE-2025-55162",
"cwe": {
"id": "CWE-565",
"name": "Reliance on Cookies without Validation and Integrity Checking"
},
"discovery_date": "2025-08-26T15:09:43.119000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2391074"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Envoy. A session management flaw was discovered in how Envoy\u0027s OAuth2 filter handles user logouts. This could allow a user\u0027s session to remain active even after they have logged out, creating a risk of account hijacking on a shared computer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoyproxy/envoy: oAuth2 Filter Signout route will not clear cookies because of missing \"secure;\" flag",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-55162"
},
{
"category": "external",
"summary": "RHBZ#2391074",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2391074"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-55162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55162"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-55162",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55162"
}
],
"release_date": "2025-09-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-17T06:34:26+00:00",
"details": "See Red Hat OpenShift Service Mesh 3.0.5 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.0",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:16040"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:1eec256a5d59268605828821b19dce44263d42c169adacfad2137dd410edccbb_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:36892a2e1f4cfdcb82121957ffa3441fe37528c4949f1458ed22f2a2af8627c0_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:810aee0fe85b4ff76d1d46a5397edd88bf9ff1a3852a7ace7cce34966739c00d_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh-dev-preview-beta/istio-ztunnel-rhel9@sha256:bceaa5e8fe724be4c6d86a9f0026dc63a3758129d53acfcfe57c75a2d2a0c76a_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:5b04637a11e755363e34f696e2c7fbc27ea770ed2c6828321e301b68f5d183a9_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d9369a3ae7bed299ac7cd14326c9eb1fdd64ebf1d950ae5b232ce63ae2fdf52e_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:df31246040c48c9c400d3ca3b581c60c84a54c456cbb03566afc73d480872f0b_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:ee1d58907961191b7fcba557dcbb18a7a967bde45575a79c9cef216d1331734d_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:01cd71a8c9bcb1691493e6997a1a501df3bdf32eca5e7fdae594de058b732983_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:09212183f8d387781b566b15851199d57c0853cacf0e44a22294c5c9e0bec357_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:402cc62d6d06bb9f2577f7f091696914a3db03e6a2e2817a9de30654872d1c01_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:478a446862338fda3a4dce3edb99723bb91198b97a6806dae510d8f2ef8f4a37_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:1dbcce7195f5023eef9263501240876648890a65ecd1777da728cf55fe304e64_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:33d11f645ea3ea208e8e8ecbad3a873361d79e5136559a5b5b07ca605d61c5d6_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:473fc0e26326ea2797e6b5aa142de0713c1c1748c258e1b51995f065e1f181fa_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:969b56a1ff7b0bc76422c1f63fd1ef29e2f772c426324ad7c4d4f388a70c0531_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:28e483cc6ded42fde9989fc16cb9a8c92750a8775b1af753e6ae7dc8ed3d379e_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:3759798960cd4981dba8fe934d51a439c836a0e0242fc81456304b5b13067d29_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:b1b03a3a39c6aac6279973e22755560138d584f1a87f0bc2333815d5e173f541_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:bfb6528653e71c39a0c8b1ed5b47f470cdca34f19ea0fe97870ddf6e27b6e862_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:0ec1331194ca8632426ae63c7465a84220cdeaa9e9700ae85a291827acf3db8a_arm64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:1ec528fa2769f18455ca38c2b93d9ae681069e0921101be246526831b66b161f_amd64",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:9e756f078b3dfa923dc7e8e2cbaf4b43a82ab10f2d76cdcf8f67c12281279c31_s390x",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:ec7200c063616574ffd44fa443971f68cada6b27fad16b7baab8abb6329d0803_ppc64le",
"Red Hat OpenShift Service Mesh 3.0:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:8e223a537f487bc3cef10769adc6fb619085dafe3ea797cfd52c20e3066f694f_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoyproxy/envoy: oAuth2 Filter Signout route will not clear cookies because of missing \"secure;\" flag"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…