Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2016-8651
Vulnerability from cvelistv5
Published
2018-08-01 16:00
Modified
2024-08-06 02:27
Severity ?
EPSS score ?
Summary
An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| secalert@redhat.com | http://www.securityfocus.com/bid/94935 | Third Party Advisory, VDB Entry | |
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2016:2915 | Third Party Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/94935 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2016:2915 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651 | Issue Tracking, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| ▼ | Red Hat | OpenShift Enterprise |
Version: 3 |
|
|
|||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T02:27:41.203Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "94935",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/94935"
},
{
"name": "RHSA-2016:2915",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "OpenShift Enterprise",
"vendor": "Red Hat",
"versions": [
{
"status": "affected",
"version": "3"
}
]
}
],
"datePublic": "2016-12-07T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2018-08-02T09:57:01",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "94935",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/94935"
},
{
"name": "RHSA-2016:2915",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
}
]
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2016-8651",
"datePublished": "2018-08-01T16:00:00",
"dateReserved": "2016-10-12T00:00:00",
"dateUpdated": "2024-08-06T02:27:41.203Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift:3.0:*:*:*:enterprise:*:*:*\", \"matchCriteriaId\": \"45690263-84D9-45A1-8C30-3ED2F0F11F47\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_container_platform:3.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"93E3194E-7082-4E21-867B-FB4ECF482A07\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_container_platform:3.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C10044B3-FBB1-4031-9060-D3A2915B164C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:redhat:openshift_container_platform:3.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EA3ADA26-2B9E-4ABA-A224-910BD75CCE00\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.\"}, {\"lang\": \"es\", \"value\": \"S ha encontrado un error de validaci\\u00f3n de entradas en la forma en la que OpenShift 3 gestiona peticiones para im\\u00e1genes. Un usuario, con una copia del manifiesto asociado con una imagen, puede extraer una imagen incluso aunque normalmente no cuente con acceso a la misma. Esto resulta en la divulgaci\\u00f3n de informaci\\u00f3n contenida en la imagen.\"}]",
"id": "CVE-2016-8651",
"lastModified": "2024-11-21T02:59:46.030",
"metrics": "{\"cvssMetricV30\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N\", \"baseScore\": 3.1, \"baseSeverity\": \"LOW\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 1.6, \"impactScore\": 1.4}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\", \"baseScore\": 3.5, \"baseSeverity\": \"LOW\", \"attackVector\": \"ADJACENT_NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"LOW\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"exploitabilityScore\": 2.1, \"impactScore\": 1.4}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:A/AC:L/Au:S/C:P/I:N/A:N\", \"baseScore\": 2.7, \"accessVector\": \"ADJACENT_NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"SINGLE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"NONE\"}, \"baseSeverity\": \"LOW\", \"exploitabilityScore\": 5.1, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2018-08-01T16:29:00.273",
"references": "[{\"url\": \"http://www.securityfocus.com/bid/94935\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2016:2915\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/94935\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2016:2915\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-20\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2016-8651\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2018-08-01T16:29:00.273\",\"lastModified\":\"2024-11-21T02:59:46.030\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.\"},{\"lang\":\"es\",\"value\":\"S ha encontrado un error de validaci\u00f3n de entradas en la forma en la que OpenShift 3 gestiona peticiones para im\u00e1genes. Un usuario, con una copia del manifiesto asociado con una imagen, puede extraer una imagen incluso aunque normalmente no cuente con acceso a la misma. Esto resulta en la divulgaci\u00f3n de informaci\u00f3n contenida en la imagen.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":3.1,\"baseSeverity\":\"LOW\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":1.6,\"impactScore\":1.4},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N\",\"baseScore\":3.5,\"baseSeverity\":\"LOW\",\"attackVector\":\"ADJACENT_NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"LOW\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"exploitabilityScore\":2.1,\"impactScore\":1.4}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:A/AC:L/Au:S/C:P/I:N/A:N\",\"baseScore\":2.7,\"accessVector\":\"ADJACENT_NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"NONE\"},\"baseSeverity\":\"LOW\",\"exploitabilityScore\":5.1,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift:3.0:*:*:*:enterprise:*:*:*\",\"matchCriteriaId\":\"45690263-84D9-45A1-8C30-3ED2F0F11F47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_container_platform:3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93E3194E-7082-4E21-867B-FB4ECF482A07\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_container_platform:3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C10044B3-FBB1-4031-9060-D3A2915B164C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:openshift_container_platform:3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA3ADA26-2B9E-4ABA-A224-910BD75CCE00\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/94935\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2016:2915\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/94935\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2016:2915\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]}]}}"
}
}
rhsa-2016:2915
Vulnerability from csaf_redhat
Published
2016-12-07 20:58
Modified
2024-11-22 10:33
Summary
Red Hat Security Advisory: atomic-openshift security and bug fix update
Notes
Topic
An update for atomic-openshift is now available for Red Hat OpenShift
Container Platform 3.1, 3.2, and 3.3.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is the company's cloud computing
Platform-as-a-Service (PaaS) solution designed for on-premise or private
cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container
Platform releases 3.3.1.7, 3.2.1.21, and 3.1.1.10. See the following
advisory for the container images for these releases:
https://access.redhat.com/errata/RHBA-2016:2916
Security Fix(es):
* An input validation flaw was found in the way OpenShift handles requests
for images. A user, with a copy of the manifest associated with an image,
can pull an image even if they do not have access to the image normally,
resulting in the disclosure of any information contained within the image.
(CVE-2016-8651)
Bug Fix(es) for OpenShift Container Platform 3.3:
* Previously when rapidly updating multiple namespaces
controlled by a single ClusterResourceQuota, the status.total.used can get
out of sync with the sum of the status.namespaces[*].used. This bug fix
ensures the ClusterResourceQuota objects are properly updated. (BZ#1400200)
* When using the `oc new-app --search` command in an environment where
OpenShift Container Platform (OCP) could not reach Docker Hub, the command
failed for any query. OCP now prints a warning and continues with what was
found in other sources. (BZ#1388524)
* The OpenShift Container Platform node daemon did not recover properly
from restarts, and it lost information about attached and mounted volumes.
In rare cases, the daemon deleted all data on a mounted volume, thinking
that it has been already unmounted while it was only missing its node's
cache. This bug fix ensures node caches are recovered after restarts, and
as a result no data loss occurs on the mounted volumes. (BZ#1398417)
* Previously, ScheduledJobs were not cleaned up on project deletion. If a
new project was created with the same project name, the previously-defined
ScheduledJobs would re-appear. This bug fix ensures ScheduledJobs are
removed when a project is removed. (BZ#1399700)
Bug Fix(es) for OpenShift Container Platform 3.2:
* When using the `oc new-app --search` command in an environment where
OpenShift Container Platform (OCP) could not reach Docker Hub, the command
failed for any query. OCP now prints a warning and continues with what was
found in other sources. (BZ#1388522)
All OpenShift Container Platform users are advised to upgrade to these
updated packages and images.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for atomic-openshift is now available for Red Hat OpenShift \nContainer Platform 3.1, 3.2, and 3.3.\n\nRed Hat Product Security has rated this update as having a security impact \nof Important. A Common Vulnerability Scoring System (CVSS) base score, \nwhich gives a detailed severity rating, is available for each vulnerability \nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is the company\u0027s cloud computing \nPlatform-as-a-Service (PaaS) solution designed for on-premise or private \ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container \nPlatform releases 3.3.1.7, 3.2.1.21, and 3.1.1.10. See the following \nadvisory for the container images for these releases:\n\nhttps://access.redhat.com/errata/RHBA-2016:2916\n\nSecurity Fix(es):\n\n* An input validation flaw was found in the way OpenShift handles requests \nfor images. A user, with a copy of the manifest associated with an image, \ncan pull an image even if they do not have access to the image normally, \nresulting in the disclosure of any information contained within the image. \n(CVE-2016-8651)\n\nBug Fix(es) for OpenShift Container Platform 3.3:\n\n* Previously when rapidly updating multiple namespaces \ncontrolled by a single ClusterResourceQuota, the status.total.used can get\nout of sync with the sum of the status.namespaces[*].used. This bug fix \nensures the ClusterResourceQuota objects are properly updated. (BZ#1400200)\n\n* When using the `oc new-app --search` command in an environment where \nOpenShift Container Platform (OCP) could not reach Docker Hub, the command \nfailed for any query. OCP now prints a warning and continues with what was \nfound in other sources. (BZ#1388524)\n\n* The OpenShift Container Platform node daemon did not recover properly \nfrom restarts, and it lost information about attached and mounted volumes. \nIn rare cases, the daemon deleted all data on a mounted volume, thinking \nthat it has been already unmounted while it was only missing its node\u0027s \ncache. This bug fix ensures node caches are recovered after restarts, and \nas a result no data loss occurs on the mounted volumes. (BZ#1398417)\n\n* Previously, ScheduledJobs were not cleaned up on project deletion. If a \nnew project was created with the same project name, the previously-defined \nScheduledJobs would re-appear. This bug fix ensures ScheduledJobs are \nremoved when a project is removed. (BZ#1399700)\n\nBug Fix(es) for OpenShift Container Platform 3.2:\n\n* When using the `oc new-app --search` command in an environment where \nOpenShift Container Platform (OCP) could not reach Docker Hub, the command \nfailed for any query. OCP now prints a warning and continues with what was \nfound in other sources. (BZ#1388522)\n\nAll OpenShift Container Platform users are advised to upgrade to these \nupdated packages and images.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2915",
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1388522",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388522"
},
{
"category": "external",
"summary": "1388524",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388524"
},
{
"category": "external",
"summary": "1397987",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397987"
},
{
"category": "external",
"summary": "1398417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1398417"
},
{
"category": "external",
"summary": "1399700",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399700"
},
{
"category": "external",
"summary": "1400200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1400200"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2915.json"
}
],
"title": "Red Hat Security Advisory: atomic-openshift security and bug fix update",
"tracking": {
"current_release_date": "2024-11-22T10:33:59+00:00",
"generator": {
"date": "2024-11-22T10:33:59+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2016:2915",
"initial_release_date": "2016-12-07T20:58:10+00:00",
"revision_history": [
{
"date": "2016-12-07T20:58:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-12-07T20:58:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T10:33:59+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Enterprise 3.1",
"product": {
"name": "Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.1::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 3.2",
"product": {
"name": "Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.2::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 3.3",
"product": {
"name": "Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-recycle@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-recycle@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-tests@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-tests@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product_id": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.1.1.10-1.git.0.efeef8d.el7aos?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product_id": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.2.1.21-1.git.0.4250771.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product_id": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.3.1.7-1.git.0.0988966.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_id": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.1.1.10-1.git.0.efeef8d.el7aos?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.1.1.10-1.git.0.efeef8d.el7aos?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.2.1.21-1.git.0.4250771.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_id": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.2.1.21-1.git.0.4250771.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.3.1.7-1.git.0.0988966.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_id": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.3.1.7-1.git.0.0988966.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src"
},
"product_reference": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src"
},
"product_reference": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src"
},
"product_reference": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-8651",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2016-10-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1397987"
}
],
"notes": [
{
"category": "description",
"text": "An input validation flaw was found in the way OpenShift handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "3: Pulling of any image is possible with it manifest",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-8651"
},
{
"category": "external",
"summary": "RHBZ#1397987",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397987"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-8651",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8651"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-8651",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8651"
}
],
"release_date": "2016-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-12-07T20:58:10+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nTo apply this update, see the following cluster upgrade documentation that \nrelates to your installed version of OpenShift Container Platform.\n\nFor OpenShift Container Platform 3.3:\n\nhttps://docs.openshift.com/container-platform/3.3/install_config/upgrading/automated_upgrades.html#upgrading-to-ocp-3-3-asynchronous-releases\n\nFor OpenShift Container Platform 3.2:\n\nhttps://docs.openshift.com/enterprise/3.2/install_config/upgrading/automated_upgrades.html#upgrading-to-openshift-enterprise-3-2-asynchronous-releases\n\nFor OpenShift Container Platform 3.1:\n\nhttps://docs.openshift.com/enterprise/3.1/install_config/upgrading/automated_upgrades.html#upgrading-to-openshift-enterprise-3-1-asynchronous-releases",
"product_ids": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 2.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:M/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "3: Pulling of any image is possible with it manifest"
}
]
}
RHSA-2016:2915
Vulnerability from csaf_redhat
Published
2016-12-07 20:58
Modified
2024-11-22 10:33
Summary
Red Hat Security Advisory: atomic-openshift security and bug fix update
Notes
Topic
An update for atomic-openshift is now available for Red Hat OpenShift
Container Platform 3.1, 3.2, and 3.3.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is the company's cloud computing
Platform-as-a-Service (PaaS) solution designed for on-premise or private
cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container
Platform releases 3.3.1.7, 3.2.1.21, and 3.1.1.10. See the following
advisory for the container images for these releases:
https://access.redhat.com/errata/RHBA-2016:2916
Security Fix(es):
* An input validation flaw was found in the way OpenShift handles requests
for images. A user, with a copy of the manifest associated with an image,
can pull an image even if they do not have access to the image normally,
resulting in the disclosure of any information contained within the image.
(CVE-2016-8651)
Bug Fix(es) for OpenShift Container Platform 3.3:
* Previously when rapidly updating multiple namespaces
controlled by a single ClusterResourceQuota, the status.total.used can get
out of sync with the sum of the status.namespaces[*].used. This bug fix
ensures the ClusterResourceQuota objects are properly updated. (BZ#1400200)
* When using the `oc new-app --search` command in an environment where
OpenShift Container Platform (OCP) could not reach Docker Hub, the command
failed for any query. OCP now prints a warning and continues with what was
found in other sources. (BZ#1388524)
* The OpenShift Container Platform node daemon did not recover properly
from restarts, and it lost information about attached and mounted volumes.
In rare cases, the daemon deleted all data on a mounted volume, thinking
that it has been already unmounted while it was only missing its node's
cache. This bug fix ensures node caches are recovered after restarts, and
as a result no data loss occurs on the mounted volumes. (BZ#1398417)
* Previously, ScheduledJobs were not cleaned up on project deletion. If a
new project was created with the same project name, the previously-defined
ScheduledJobs would re-appear. This bug fix ensures ScheduledJobs are
removed when a project is removed. (BZ#1399700)
Bug Fix(es) for OpenShift Container Platform 3.2:
* When using the `oc new-app --search` command in an environment where
OpenShift Container Platform (OCP) could not reach Docker Hub, the command
failed for any query. OCP now prints a warning and continues with what was
found in other sources. (BZ#1388522)
All OpenShift Container Platform users are advised to upgrade to these
updated packages and images.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for atomic-openshift is now available for Red Hat OpenShift \nContainer Platform 3.1, 3.2, and 3.3.\n\nRed Hat Product Security has rated this update as having a security impact \nof Important. A Common Vulnerability Scoring System (CVSS) base score, \nwhich gives a detailed severity rating, is available for each vulnerability \nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is the company\u0027s cloud computing \nPlatform-as-a-Service (PaaS) solution designed for on-premise or private \ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container \nPlatform releases 3.3.1.7, 3.2.1.21, and 3.1.1.10. See the following \nadvisory for the container images for these releases:\n\nhttps://access.redhat.com/errata/RHBA-2016:2916\n\nSecurity Fix(es):\n\n* An input validation flaw was found in the way OpenShift handles requests \nfor images. A user, with a copy of the manifest associated with an image, \ncan pull an image even if they do not have access to the image normally, \nresulting in the disclosure of any information contained within the image. \n(CVE-2016-8651)\n\nBug Fix(es) for OpenShift Container Platform 3.3:\n\n* Previously when rapidly updating multiple namespaces \ncontrolled by a single ClusterResourceQuota, the status.total.used can get\nout of sync with the sum of the status.namespaces[*].used. This bug fix \nensures the ClusterResourceQuota objects are properly updated. (BZ#1400200)\n\n* When using the `oc new-app --search` command in an environment where \nOpenShift Container Platform (OCP) could not reach Docker Hub, the command \nfailed for any query. OCP now prints a warning and continues with what was \nfound in other sources. (BZ#1388524)\n\n* The OpenShift Container Platform node daemon did not recover properly \nfrom restarts, and it lost information about attached and mounted volumes. \nIn rare cases, the daemon deleted all data on a mounted volume, thinking \nthat it has been already unmounted while it was only missing its node\u0027s \ncache. This bug fix ensures node caches are recovered after restarts, and \nas a result no data loss occurs on the mounted volumes. (BZ#1398417)\n\n* Previously, ScheduledJobs were not cleaned up on project deletion. If a \nnew project was created with the same project name, the previously-defined \nScheduledJobs would re-appear. This bug fix ensures ScheduledJobs are \nremoved when a project is removed. (BZ#1399700)\n\nBug Fix(es) for OpenShift Container Platform 3.2:\n\n* When using the `oc new-app --search` command in an environment where \nOpenShift Container Platform (OCP) could not reach Docker Hub, the command \nfailed for any query. OCP now prints a warning and continues with what was \nfound in other sources. (BZ#1388522)\n\nAll OpenShift Container Platform users are advised to upgrade to these \nupdated packages and images.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2915",
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1388522",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388522"
},
{
"category": "external",
"summary": "1388524",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388524"
},
{
"category": "external",
"summary": "1397987",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397987"
},
{
"category": "external",
"summary": "1398417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1398417"
},
{
"category": "external",
"summary": "1399700",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399700"
},
{
"category": "external",
"summary": "1400200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1400200"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2915.json"
}
],
"title": "Red Hat Security Advisory: atomic-openshift security and bug fix update",
"tracking": {
"current_release_date": "2024-11-22T10:33:59+00:00",
"generator": {
"date": "2024-11-22T10:33:59+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2016:2915",
"initial_release_date": "2016-12-07T20:58:10+00:00",
"revision_history": [
{
"date": "2016-12-07T20:58:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-12-07T20:58:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T10:33:59+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Enterprise 3.1",
"product": {
"name": "Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.1::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 3.2",
"product": {
"name": "Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.2::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 3.3",
"product": {
"name": "Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-recycle@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-recycle@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-tests@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-tests@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product_id": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.1.1.10-1.git.0.efeef8d.el7aos?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product_id": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.2.1.21-1.git.0.4250771.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product_id": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.3.1.7-1.git.0.0988966.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_id": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.1.1.10-1.git.0.efeef8d.el7aos?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.1.1.10-1.git.0.efeef8d.el7aos?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.2.1.21-1.git.0.4250771.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_id": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.2.1.21-1.git.0.4250771.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.3.1.7-1.git.0.0988966.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_id": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.3.1.7-1.git.0.0988966.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src"
},
"product_reference": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src"
},
"product_reference": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src"
},
"product_reference": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-8651",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2016-10-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1397987"
}
],
"notes": [
{
"category": "description",
"text": "An input validation flaw was found in the way OpenShift handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "3: Pulling of any image is possible with it manifest",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-8651"
},
{
"category": "external",
"summary": "RHBZ#1397987",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397987"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-8651",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8651"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-8651",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8651"
}
],
"release_date": "2016-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-12-07T20:58:10+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nTo apply this update, see the following cluster upgrade documentation that \nrelates to your installed version of OpenShift Container Platform.\n\nFor OpenShift Container Platform 3.3:\n\nhttps://docs.openshift.com/container-platform/3.3/install_config/upgrading/automated_upgrades.html#upgrading-to-ocp-3-3-asynchronous-releases\n\nFor OpenShift Container Platform 3.2:\n\nhttps://docs.openshift.com/enterprise/3.2/install_config/upgrading/automated_upgrades.html#upgrading-to-openshift-enterprise-3-2-asynchronous-releases\n\nFor OpenShift Container Platform 3.1:\n\nhttps://docs.openshift.com/enterprise/3.1/install_config/upgrading/automated_upgrades.html#upgrading-to-openshift-enterprise-3-1-asynchronous-releases",
"product_ids": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 2.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:M/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "3: Pulling of any image is possible with it manifest"
}
]
}
rhsa-2016_2915
Vulnerability from csaf_redhat
Published
2016-12-07 20:58
Modified
2024-11-22 10:33
Summary
Red Hat Security Advisory: atomic-openshift security and bug fix update
Notes
Topic
An update for atomic-openshift is now available for Red Hat OpenShift
Container Platform 3.1, 3.2, and 3.3.
Red Hat Product Security has rated this update as having a security impact
of Important. A Common Vulnerability Scoring System (CVSS) base score,
which gives a detailed severity rating, is available for each vulnerability
from the CVE link(s) in the References section.
Details
Red Hat OpenShift Container Platform is the company's cloud computing
Platform-as-a-Service (PaaS) solution designed for on-premise or private
cloud deployments.
This advisory contains the RPM packages for Red Hat OpenShift Container
Platform releases 3.3.1.7, 3.2.1.21, and 3.1.1.10. See the following
advisory for the container images for these releases:
https://access.redhat.com/errata/RHBA-2016:2916
Security Fix(es):
* An input validation flaw was found in the way OpenShift handles requests
for images. A user, with a copy of the manifest associated with an image,
can pull an image even if they do not have access to the image normally,
resulting in the disclosure of any information contained within the image.
(CVE-2016-8651)
Bug Fix(es) for OpenShift Container Platform 3.3:
* Previously when rapidly updating multiple namespaces
controlled by a single ClusterResourceQuota, the status.total.used can get
out of sync with the sum of the status.namespaces[*].used. This bug fix
ensures the ClusterResourceQuota objects are properly updated. (BZ#1400200)
* When using the `oc new-app --search` command in an environment where
OpenShift Container Platform (OCP) could not reach Docker Hub, the command
failed for any query. OCP now prints a warning and continues with what was
found in other sources. (BZ#1388524)
* The OpenShift Container Platform node daemon did not recover properly
from restarts, and it lost information about attached and mounted volumes.
In rare cases, the daemon deleted all data on a mounted volume, thinking
that it has been already unmounted while it was only missing its node's
cache. This bug fix ensures node caches are recovered after restarts, and
as a result no data loss occurs on the mounted volumes. (BZ#1398417)
* Previously, ScheduledJobs were not cleaned up on project deletion. If a
new project was created with the same project name, the previously-defined
ScheduledJobs would re-appear. This bug fix ensures ScheduledJobs are
removed when a project is removed. (BZ#1399700)
Bug Fix(es) for OpenShift Container Platform 3.2:
* When using the `oc new-app --search` command in an environment where
OpenShift Container Platform (OCP) could not reach Docker Hub, the command
failed for any query. OCP now prints a warning and continues with what was
found in other sources. (BZ#1388522)
All OpenShift Container Platform users are advised to upgrade to these
updated packages and images.
Terms of Use
This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for atomic-openshift is now available for Red Hat OpenShift \nContainer Platform 3.1, 3.2, and 3.3.\n\nRed Hat Product Security has rated this update as having a security impact \nof Important. A Common Vulnerability Scoring System (CVSS) base score, \nwhich gives a detailed severity rating, is available for each vulnerability \nfrom the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Container Platform is the company\u0027s cloud computing \nPlatform-as-a-Service (PaaS) solution designed for on-premise or private \ncloud deployments.\n\nThis advisory contains the RPM packages for Red Hat OpenShift Container \nPlatform releases 3.3.1.7, 3.2.1.21, and 3.1.1.10. See the following \nadvisory for the container images for these releases:\n\nhttps://access.redhat.com/errata/RHBA-2016:2916\n\nSecurity Fix(es):\n\n* An input validation flaw was found in the way OpenShift handles requests \nfor images. A user, with a copy of the manifest associated with an image, \ncan pull an image even if they do not have access to the image normally, \nresulting in the disclosure of any information contained within the image. \n(CVE-2016-8651)\n\nBug Fix(es) for OpenShift Container Platform 3.3:\n\n* Previously when rapidly updating multiple namespaces \ncontrolled by a single ClusterResourceQuota, the status.total.used can get\nout of sync with the sum of the status.namespaces[*].used. This bug fix \nensures the ClusterResourceQuota objects are properly updated. (BZ#1400200)\n\n* When using the `oc new-app --search` command in an environment where \nOpenShift Container Platform (OCP) could not reach Docker Hub, the command \nfailed for any query. OCP now prints a warning and continues with what was \nfound in other sources. (BZ#1388524)\n\n* The OpenShift Container Platform node daemon did not recover properly \nfrom restarts, and it lost information about attached and mounted volumes. \nIn rare cases, the daemon deleted all data on a mounted volume, thinking \nthat it has been already unmounted while it was only missing its node\u0027s \ncache. This bug fix ensures node caches are recovered after restarts, and \nas a result no data loss occurs on the mounted volumes. (BZ#1398417)\n\n* Previously, ScheduledJobs were not cleaned up on project deletion. If a \nnew project was created with the same project name, the previously-defined \nScheduledJobs would re-appear. This bug fix ensures ScheduledJobs are \nremoved when a project is removed. (BZ#1399700)\n\nBug Fix(es) for OpenShift Container Platform 3.2:\n\n* When using the `oc new-app --search` command in an environment where \nOpenShift Container Platform (OCP) could not reach Docker Hub, the command \nfailed for any query. OCP now prints a warning and continues with what was \nfound in other sources. (BZ#1388522)\n\nAll OpenShift Container Platform users are advised to upgrade to these \nupdated packages and images.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2016:2915",
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1388522",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388522"
},
{
"category": "external",
"summary": "1388524",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1388524"
},
{
"category": "external",
"summary": "1397987",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397987"
},
{
"category": "external",
"summary": "1398417",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1398417"
},
{
"category": "external",
"summary": "1399700",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1399700"
},
{
"category": "external",
"summary": "1400200",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1400200"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2016/rhsa-2016_2915.json"
}
],
"title": "Red Hat Security Advisory: atomic-openshift security and bug fix update",
"tracking": {
"current_release_date": "2024-11-22T10:33:59+00:00",
"generator": {
"date": "2024-11-22T10:33:59+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2016:2915",
"initial_release_date": "2016-12-07T20:58:10+00:00",
"revision_history": [
{
"date": "2016-12-07T20:58:10+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2016-12-07T20:58:10+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T10:33:59+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift Enterprise 3.1",
"product": {
"name": "Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.1::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 3.2",
"product": {
"name": "Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.2::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift Container Platform 3.3",
"product": {
"name": "Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:3.3::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Enterprise"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-recycle@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.1.1.10-1.git.0.efeef8d.el7aos?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-recycle@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-tests@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_id": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.2.1.21-1.git.0.4250771.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-master@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-clients-redistributable@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-pod@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-dockerregistry@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-node@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-sdn-ovs@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tuned-profiles-atomic-openshift-node@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product": {
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_id": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-tests@3.3.1.7-1.git.0.0988966.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product_id": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.1.1.10-1.git.0.efeef8d.el7aos?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product_id": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.2.1.21-1.git.0.4250771.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product_id": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift@3.3.1.7-1.git.0.0988966.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_id": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.1.1.10-1.git.0.efeef8d.el7aos?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.1.1.10-1.git.0.efeef8d.el7aos?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.2.1.21-1.git.0.4250771.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_id": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.2.1.21-1.git.0.4250771.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product": {
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_id": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-docker-excluder@3.3.1.7-1.git.0.0988966.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product": {
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_id": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/atomic-openshift-excluder@3.3.1.7-1.git.0.0988966.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src"
},
"product_reference": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64 as a component of Red Hat OpenShift Enterprise 3.1",
"product_id": "7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src"
},
"product_reference": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.2",
"product_id": "7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src"
},
"product_reference": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch"
},
"product_reference": "atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch"
},
"product_reference": "atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64 as a component of Red Hat OpenShift Container Platform 3.3",
"product_id": "7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
},
"product_reference": "tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"relates_to_product_reference": "7Server-RH7-RHOSE-3.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-8651",
"cwe": {
"id": "CWE-20",
"name": "Improper Input Validation"
},
"discovery_date": "2016-10-26T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1397987"
}
],
"notes": [
{
"category": "description",
"text": "An input validation flaw was found in the way OpenShift handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "3: Pulling of any image is possible with it manifest",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2016-8651"
},
{
"category": "external",
"summary": "RHBZ#1397987",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397987"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2016-8651",
"url": "https://www.cve.org/CVERecord?id=CVE-2016-8651"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2016-8651",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8651"
}
],
"release_date": "2016-12-07T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2016-12-07T20:58:10+00:00",
"details": "Before applying this update, make sure all previously released errata \nrelevant to your system have been applied.\n\nTo apply this update, see the following cluster upgrade documentation that \nrelates to your installed version of OpenShift Container Platform.\n\nFor OpenShift Container Platform 3.3:\n\nhttps://docs.openshift.com/container-platform/3.3/install_config/upgrading/automated_upgrades.html#upgrading-to-ocp-3-3-asynchronous-releases\n\nFor OpenShift Container Platform 3.2:\n\nhttps://docs.openshift.com/enterprise/3.2/install_config/upgrading/automated_upgrades.html#upgrading-to-openshift-enterprise-3-2-asynchronous-releases\n\nFor OpenShift Container Platform 3.1:\n\nhttps://docs.openshift.com/enterprise/3.1/install_config/upgrading/automated_upgrades.html#upgrading-to-openshift-enterprise-3-1-asynchronous-releases",
"product_ids": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
}
],
"scores": [
{
"cvss_v2": {
"accessComplexity": "MEDIUM",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 2.3,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:M/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"products": [
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.src",
"7Server-RH7-RHOSE-3.1:atomic-openshift-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-clients-redistributable-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-docker-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-dockerregistry-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-excluder-0:3.1.1.10-1.git.0.efeef8d.el7aos.noarch",
"7Server-RH7-RHOSE-3.1:atomic-openshift-master-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-pod-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-recycle-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:atomic-openshift-sdn-ovs-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.1:tuned-profiles-atomic-openshift-node-0:3.1.1.10-1.git.0.efeef8d.el7aos.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.src",
"7Server-RH7-RHOSE-3.2:atomic-openshift-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-clients-redistributable-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-docker-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-dockerregistry-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-excluder-0:3.2.1.21-1.git.0.4250771.el7.noarch",
"7Server-RH7-RHOSE-3.2:atomic-openshift-master-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-pod-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-recycle-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-sdn-ovs-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:atomic-openshift-tests-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.2:tuned-profiles-atomic-openshift-node-0:3.2.1.21-1.git.0.4250771.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.src",
"7Server-RH7-RHOSE-3.3:atomic-openshift-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-clients-redistributable-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-docker-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-dockerregistry-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-excluder-0:3.3.1.7-1.git.0.0988966.el7.noarch",
"7Server-RH7-RHOSE-3.3:atomic-openshift-master-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-pod-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-sdn-ovs-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:atomic-openshift-tests-0:3.3.1.7-1.git.0.0988966.el7.x86_64",
"7Server-RH7-RHOSE-3.3:tuned-profiles-atomic-openshift-node-0:3.3.1.7-1.git.0.0988966.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "3: Pulling of any image is possible with it manifest"
}
]
}
ghsa-8x5v-7r3g-jgfj
Vulnerability from github
Published
2022-05-13 01:38
Modified
2022-05-13 01:38
Severity ?
Details
An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.
{
"affected": [],
"aliases": [
"CVE-2016-8651"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2018-08-01T16:29:00Z",
"severity": "LOW"
},
"details": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.",
"id": "GHSA-8x5v-7r3g-jgfj",
"modified": "2022-05-13T01:38:36Z",
"published": "2022-05-13T01:38:36Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-8651"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"type": "WEB",
"url": "https://access.redhat.com/security/cve/CVE-2016-8651"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1397987"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/94935"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
]
}
gsd-2016-8651
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2016-8651",
"description": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.",
"id": "GSD-2016-8651",
"references": [
"https://access.redhat.com/errata/RHSA-2016:2915"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2016-8651"
],
"details": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.",
"id": "GSD-2016-8651",
"modified": "2023-12-13T01:21:22.836527Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-8651",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "OpenShift Enterprise",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "3"
}
]
}
}
]
},
"vendor_name": "Red Hat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image."
}
]
},
"impact": {
"cvss": [
{
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"cweId": "CWE-20",
"lang": "eng",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "http://www.securityfocus.com/bid/94935",
"refsource": "MISC",
"url": "http://www.securityfocus.com/bid/94935"
},
{
"name": "https://access.redhat.com/errata/RHSA-2016:2915",
"refsource": "MISC",
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651",
"refsource": "MISC",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:redhat:openshift:3.0:*:*:*:enterprise:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openshift_container_platform:3.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openshift_container_platform:3.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:openshift_container_platform:3.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-8651"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
},
{
"name": "RHSA-2016:2915",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"name": "94935",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94935"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 5.1,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.1,
"impactScore": 1.4
}
},
"lastModifiedDate": "2023-02-12T23:26Z",
"publishedDate": "2018-08-01T16:29Z"
}
}
}
CVE-2016-8651
Vulnerability from fkie_nvd
Published
2018-08-01 16:29
Modified
2024-11-21 02:59
Severity ?
3.1 (Low) - CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N
3.5 (Low) - CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
3.5 (Low) - CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
Summary
An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image.
References
| ▼ | URL | Tags | |
|---|---|---|---|
| secalert@redhat.com | http://www.securityfocus.com/bid/94935 | Third Party Advisory, VDB Entry | |
| secalert@redhat.com | https://access.redhat.com/errata/RHSA-2016:2915 | Third Party Advisory | |
| secalert@redhat.com | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651 | Issue Tracking, Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/94935 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://access.redhat.com/errata/RHSA-2016:2915 | Third Party Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651 | Issue Tracking, Third Party Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| redhat | openshift | 3.0 | |
| redhat | openshift_container_platform | 3.1 | |
| redhat | openshift_container_platform | 3.2 | |
| redhat | openshift_container_platform | 3.3 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:openshift:3.0:*:*:*:enterprise:*:*:*",
"matchCriteriaId": "45690263-84D9-45A1-8C30-3ED2F0F11F47",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openshift_container_platform:3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "93E3194E-7082-4E21-867B-FB4ECF482A07",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openshift_container_platform:3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "C10044B3-FBB1-4031-9060-D3A2915B164C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:openshift_container_platform:3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "EA3ADA26-2B9E-4ABA-A224-910BD75CCE00",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "An input validation flaw was found in the way OpenShift 3 handles requests for images. A user, with a copy of the manifest associated with an image, can pull an image even if they do not have access to the image normally, resulting in the disclosure of any information contained within the image."
},
{
"lang": "es",
"value": "S ha encontrado un error de validaci\u00f3n de entradas en la forma en la que OpenShift 3 gestiona peticiones para im\u00e1genes. Un usuario, con una copia del manifiesto asociado con una imagen, puede extraer una imagen incluso aunque normalmente no cuente con acceso a la misma. Esto resulta en la divulgaci\u00f3n de informaci\u00f3n contenida en la imagen."
}
],
"id": "CVE-2016-8651",
"lastModified": "2024-11-21T02:59:46.030",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "LOW",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "NONE",
"baseScore": 2.7,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "NONE",
"vectorString": "AV:A/AC:L/Au:S/C:P/I:N/A:N",
"version": "2.0"
},
"exploitabilityScore": 5.1,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.1,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 1.6,
"impactScore": 1.4,
"source": "secalert@redhat.com",
"type": "Secondary"
},
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"availabilityImpact": "NONE",
"baseScore": 3.5,
"baseSeverity": "LOW",
"confidentialityImpact": "LOW",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
"version": "3.0"
},
"exploitabilityScore": 2.1,
"impactScore": 1.4,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-08-01T16:29:00.273",
"references": [
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94935"
},
{
"source": "secalert@redhat.com",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"source": "secalert@redhat.com",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/94935"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2016:2915"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2016-8651"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "secalert@redhat.com",
"type": "Primary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Secondary"
}
]
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.