rhsa-2025:16044
Vulnerability from csaf_redhat
Published
2025-09-17 07:00
Modified
2025-11-07 00:15
Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.1.2
Notes
Topic
Red Hat OpenShift Service Mesh 3.1.2
This update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details
Red Hat OpenShift Service Mesh 3.1.2, which is based on the open source Istio project, addresses a variety of problems in a microservice architecture by creating a centralized point of control in an application.
Fixes/Improvements:
* Updated to Istio version 1.26.4
Security Fix(es):
* istio-proxyv2-rhel9: Use after free in DNS cache (CVE-2025-54588)
* istio-proxyv2-rhel9: oAuth2 Filter Signout route will not clear cookies because of missing "secure;" flag (CVE-2025-55162)
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh 3.1.2\nThis update has a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh 3.1.2, which is based on the open source Istio project, addresses a variety of problems in a microservice architecture by creating a centralized point of control in an application.\nFixes/Improvements:\n* Updated to Istio version 1.26.4\nSecurity Fix(es):\n* istio-proxyv2-rhel9: Use after free in DNS cache (CVE-2025-54588)\n* istio-proxyv2-rhel9: oAuth2 Filter Signout route will not clear cookies because of missing \"secure;\" flag (CVE-2025-55162)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2025:16044",
"url": "https://access.redhat.com/errata/RHSA-2025:16044"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-54588",
"url": "https://access.redhat.com/security/cve/CVE-2025-54588"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/CVE-2025-55162",
"url": "https://access.redhat.com/security/cve/CVE-2025-55162"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/cve-2025-54588",
"url": "https://access.redhat.com/security/cve/cve-2025-54588"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/cve/cve-2025-55162",
"url": "https://access.redhat.com/security/cve/cve-2025-55162"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification",
"url": "https://access.redhat.com/security/updates/classification"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/",
"url": "https://access.redhat.com/security/updates/classification/"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2025/rhsa-2025_16044.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh 3.1.2",
"tracking": {
"current_release_date": "2025-11-07T00:15:01+00:00",
"generator": {
"date": "2025-11-07T00:15:01+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.11"
}
},
"id": "RHSA-2025:16044",
"initial_release_date": "2025-09-17T07:00:14+00:00",
"revision_history": [
{
"date": "2025-09-17T07:00:14+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2025-09-17T07:00:18+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-07T00:15:01+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Service Mesh 3.1",
"product": {
"name": "Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:3.1::el9"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-sail-operator-bundle@sha256%3Ad4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.1.2-1757594700"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel9@sha256%3A2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.26.4-1757491204"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.1.1-1757004529"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel9-operator@sha256%3A23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.1.2-1757494706"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-pilot-rhel9@sha256%3Ab18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.26.4-1757588670"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-proxyv2-rhel9@sha256%3A54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.26.4-1757524855"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64",
"product_id": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-ztunnel-rhel9@sha256%3A55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh-tech-preview\u0026tag=1.26.4-1757504327"
}
}
}
],
"category": "architecture",
"name": "amd64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel9@sha256%3Aa7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.26.4-1757491204"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.1.1-1757004529"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel9-operator@sha256%3Aa86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.1.2-1757494706"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-pilot-rhel9@sha256%3Ac58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.26.4-1757588670"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-proxyv2-rhel9@sha256%3A9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.26.4-1757524855"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64",
"product": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64",
"product_id": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-ztunnel-rhel9@sha256%3Abf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh-tech-preview\u0026tag=1.26.4-1757504327"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel9@sha256%3Ad420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.26.4-1757491204"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.1.1-1757004529"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel9-operator@sha256%3A6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.1.2-1757494706"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-pilot-rhel9@sha256%3A02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.26.4-1757588670"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-proxyv2-rhel9@sha256%3A652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.26.4-1757524855"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le",
"product": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le",
"product_id": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-ztunnel-rhel9@sha256%3Ac31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh-tech-preview\u0026tag=1.26.4-1757504327"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel9@sha256%3A61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.26.4-1757491204"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel9@sha256%3A7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.1.1-1757004529"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel9-operator@sha256%3A48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=3.1.2-1757494706"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-pilot-rhel9@sha256%3A96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.26.4-1757588670"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-proxyv2-rhel9@sha256%3A1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh\u0026tag=1.26.4-1757524855"
}
}
},
{
"category": "product_version",
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x",
"product": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x",
"product_id": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-ztunnel-rhel9@sha256%3Ae3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh-tech-preview\u0026tag=1.26.4-1757504327"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64 as a component of Red Hat OpenShift Service Mesh 3.1",
"product_id": "Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64"
},
"product_reference": "registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64",
"relates_to_product_reference": "Red Hat OpenShift Service Mesh 3.1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2025-54588",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2025-08-26T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2391073"
}
],
"notes": [
{
"category": "description",
"text": "A memory corruption flaw was discovered in how the Envoy proxy handles its DNS cache. This issue could allow a specific sequence of DNS lookups to cause the Envoy process to crash.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoyproxy/envoy: Use after free in DNS cache",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-54588"
},
{
"category": "external",
"summary": "RHBZ#2391073",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2391073"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-54588",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-54588"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-54588",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-54588"
}
],
"release_date": "2025-09-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-17T07:00:14+00:00",
"details": "See Red Hat OpenShift Service Mesh 3.1.2 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.1",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:16044"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "envoyproxy/envoy: Use after free in DNS cache"
},
{
"cve": "CVE-2025-55162",
"cwe": {
"id": "CWE-565",
"name": "Reliance on Cookies without Validation and Integrity Checking"
},
"discovery_date": "2025-08-26T15:09:43.119000+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2391074"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Envoy. A session management flaw was discovered in how Envoy\u0027s OAuth2 filter handles user logouts. This could allow a user\u0027s session to remain active even after they have logged out, creating a risk of account hijacking on a shared computer.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoyproxy/envoy: oAuth2 Filter Signout route will not clear cookies because of missing \"secure;\" flag",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64"
],
"known_not_affected": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2025-55162"
},
{
"category": "external",
"summary": "RHBZ#2391074",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2391074"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2025-55162",
"url": "https://www.cve.org/CVERecord?id=CVE-2025-55162"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2025-55162",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2025-55162"
}
],
"release_date": "2025-09-03T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2025-09-17T07:00:14+00:00",
"details": "See Red Hat OpenShift Service Mesh 3.1.2 documentation at https://docs.redhat.com/en/documentation/red_hat_openshift_service_mesh/3.1",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2025:16044"
},
{
"category": "workaround",
"details": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.",
"product_ids": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 6.3,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"integrityImpact": "LOW",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "REQUIRED",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N",
"version": "3.1"
},
"products": [
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:55702fb66404a0f0cd2b93097a7e77f0ce19188779f827db85cde010bef08028_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:bf4e5e1f4c737cb36ee522e9248bde6dc211307797c32e1555deb473128b93e6_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:c31bf0b4d59912035335212663ac9f53977d2e48975e504073f61364e7c317e7_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh-tech-preview/istio-ztunnel-rhel9@sha256:e3895e9644cdce4b76829077fa580fc359ab9aeac8956620ea2590232c94a532_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:2adb684a6ff7cbda70a0933a2d4416df760e9e648b1ad45b94f7fd192b163cf7_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:61e4379e08dbd9dcd40d7c98204950565fe24b82dec8d589c991efcb9249b86e_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:a7828b54bf5e39f5856575975570186fc894cf4414c1fefcad74f9504e2eda2b_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-cni-rhel9@sha256:d420be1a71a1620f6fb77ba8e137cb97537b38528f8cac3ab7f27bbddcdcbff3_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:273fcf57f3f77f2682d98f8de21911cdc245085de15110e9a7e6f93d4ef3285b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:7412ea236728118c8b953aaad10fe2ba78cba5470e8001075fed14fa5e5239a0_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:837362d8081c1dcf5d0715bb02c39177e16aaeb8d6278f5a981cc6351068d420_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel9@sha256:927802b6cfefc8354022dad9d4d33d59682f299b31b4f5eab07c071351186c56_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:02014307d736869c860396060d18e32b85e008445d28366308281f2f02d32ae5_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:96fbec67f59a60ab6bcaec9694f6e042f97f64e4582177a45708299c5b780454_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:b18077a6bd959dbddaa2294f21fdb21aa91d43aedbf9a2727442bc91c27d5b89_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-pilot-rhel9@sha256:c58802faeb26cc70c1a2f8514cb4c5bf4e8137921d8f616c718a5d28e0022f40_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:1bf0f156d25d964e4aca4a512807c80712aa7d609c0e1d51890b9db007940173_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:54dc68f4cadf7da1f654879aae9a4472d37ed44461b5a27a430d1c717efc3dc2_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:652e6fa688a5b7754aadc4361f4de413de2b294e2f06c58091021bb6fe662501_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-proxyv2-rhel9@sha256:9ae2a62ade185b68bc0243bc06ab59ffa77c1798da3dd434c61191caf5c8353b_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:23626cb0fc415fa6823a2e49dde2842c8db7605319e0364ba67baec7a618057b_amd64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:48a3f1e2258f276a7d8ff738e0bcfb10df23b1cb3492d22059f7eaa80e5ac7c4_s390x",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:6020100eeada161ab2cacf652f8eaf22b4dce3af1f40a7d80f7089ac58e6cc48_ppc64le",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-rhel9-operator@sha256:a86e0e9a5d24102275e542c02f0671216ea9379c71f1b4df46d192c093e034a5_arm64",
"Red Hat OpenShift Service Mesh 3.1:registry.redhat.io/openshift-service-mesh/istio-sail-operator-bundle@sha256:d4ce6357b07ea13906b157c38766a5ac100bfe5dec5dab7730bfe8289445e1f6_amd64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoyproxy/envoy: oAuth2 Filter Signout route will not clear cookies because of missing \"secure;\" flag"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…