Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2021-3449 (GCVE-0-2021-3449)
Vulnerability from cvelistv5 – Published: 2021-03-25 14:25 – Updated: 2024-09-17 03:43
VLAI
EPSS
Title
NULL pointer deref in signature_algorithms processing
Summary
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).
Severity
No CVSS data available.
CWE
- NULL pointer dereference
Assigner
References
29 references
Impacted products
Date Public
2021-03-25 00:00
Credits
Peter Kästle (Nokia) and Samuel Sapalski (Nokia)
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-03T16:53:17.609Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_transferred"
],
"url": "https://www.openssl.org/news/secadv/20210325.txt"
},
{
"tags": [
"x_transferred"
],
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=fb9fa6b51defd48157eeb207f52181f735d96148"
},
{
"name": "20210325 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2021",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd"
},
{
"name": "DSA-4875",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://www.debian.org/security/2021/dsa-4875"
},
{
"name": "[oss-security] 20210327 OpenSSL 1.1.1 CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT, CVE-2021-3449 NULL pointer deref in signature_algorithms processing",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/27/1"
},
{
"name": "[oss-security] 20210327 Re: OpenSSL 1.1.1 CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT, CVE-2021-3449 NULL pointer deref in signature_algorithms processing",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/27/2"
},
{
"name": "[oss-security] 20210328 Re: OpenSSL 1.1.1 CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT, CVE-2021-3449 NULL pointer deref in signature_algorithms processing",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/28/3"
},
{
"name": "[oss-security] 20210328 Re: OpenSSL 1.1.1 CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT, CVE-2021-3449 NULL pointer deref in signature_algorithms processing",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/28/4"
},
{
"name": "GLSA-202103-03",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/202103-03"
},
{
"name": "FEDORA-2021-cbf14ab8f9",
"tags": [
"vendor-advisory",
"x_transferred"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuApr2021.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.tenable.com/security/tns-2021-10"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.tenable.com/security/tns-2021-09"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20210513-0002/"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20210326-0006/"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.tenable.com/security/tns-2021-06"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.tenable.com/security/tns-2021-05"
},
{
"tags": [
"x_transferred"
],
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10356"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.oracle.com//security-alerts/cpujul2021.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf"
},
{
"tags": [
"x_transferred"
],
"url": "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845"
},
{
"tags": [
"x_transferred"
],
"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013"
},
{
"name": "[debian-lts-announce] 20210831 [SECURITY] [DLA 2751-1] postgresql-9.6 security update",
"tags": [
"mailing-list",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
},
{
"tags": [
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"tags": [
"x_transferred"
],
"url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "OpenSSL",
"vendor": "OpenSSL",
"versions": [
{
"status": "affected",
"version": "Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j)"
}
]
}
],
"credits": [
{
"lang": "en",
"value": "Peter K\u00e4stle (Nokia) and Samuel Sapalski (Nokia)"
}
],
"datePublic": "2021-03-25T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j)."
}
],
"metrics": [
{
"other": {
"content": {
"lang": "eng",
"url": "https://www.openssl.org/policies/secpolicy.html#High",
"value": "High"
},
"type": "unknown"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "NULL pointer dereference",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2024-06-21T19:05:57.096Z",
"orgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
"shortName": "openssl"
},
"references": [
{
"url": "https://www.openssl.org/news/secadv/20210325.txt"
},
{
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=fb9fa6b51defd48157eeb207f52181f735d96148"
},
{
"name": "20210325 Multiple Vulnerabilities in OpenSSL Affecting Cisco Products: March 2021",
"tags": [
"vendor-advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd"
},
{
"name": "DSA-4875",
"tags": [
"vendor-advisory"
],
"url": "https://www.debian.org/security/2021/dsa-4875"
},
{
"name": "[oss-security] 20210327 OpenSSL 1.1.1 CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT, CVE-2021-3449 NULL pointer deref in signature_algorithms processing",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/27/1"
},
{
"name": "[oss-security] 20210327 Re: OpenSSL 1.1.1 CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT, CVE-2021-3449 NULL pointer deref in signature_algorithms processing",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/27/2"
},
{
"name": "[oss-security] 20210328 Re: OpenSSL 1.1.1 CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT, CVE-2021-3449 NULL pointer deref in signature_algorithms processing",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/28/3"
},
{
"name": "[oss-security] 20210328 Re: OpenSSL 1.1.1 CVE-2021-3450 CA certificate check bypass with X509_V_FLAG_X509_STRICT, CVE-2021-3449 NULL pointer deref in signature_algorithms processing",
"tags": [
"mailing-list"
],
"url": "http://www.openwall.com/lists/oss-security/2021/03/28/4"
},
{
"name": "GLSA-202103-03",
"tags": [
"vendor-advisory"
],
"url": "https://security.gentoo.org/glsa/202103-03"
},
{
"name": "FEDORA-2021-cbf14ab8f9",
"tags": [
"vendor-advisory"
],
"url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/"
},
{
"url": "https://www.oracle.com/security-alerts/cpuApr2021.html"
},
{
"url": "https://www.tenable.com/security/tns-2021-10"
},
{
"url": "https://www.tenable.com/security/tns-2021-09"
},
{
"url": "https://security.netapp.com/advisory/ntap-20210513-0002/"
},
{
"url": "https://security.netapp.com/advisory/ntap-20210326-0006/"
},
{
"url": "https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc"
},
{
"url": "https://www.tenable.com/security/tns-2021-06"
},
{
"url": "https://www.tenable.com/security/tns-2021-05"
},
{
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10356"
},
{
"url": "https://www.oracle.com//security-alerts/cpujul2021.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf"
},
{
"url": "https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845"
},
{
"url": "https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013"
},
{
"name": "[debian-lts-announce] 20210831 [SECURITY] [DLA 2751-1] postgresql-9.6 security update",
"tags": [
"mailing-list"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpuoct2021.html"
},
{
"url": "https://www.oracle.com/security-alerts/cpuapr2022.html"
},
{
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf"
},
{
"url": "https://www.oracle.com/security-alerts/cpujul2022.html"
},
{
"url": "https://security.netapp.com/advisory/ntap-20240621-0006/"
}
],
"title": "NULL pointer deref in signature_algorithms processing"
}
},
"cveMetadata": {
"assignerOrgId": "3a12439a-ef3a-4c79-92e6-6081a721f1e5",
"assignerShortName": "openssl",
"cveId": "CVE-2021-3449",
"datePublished": "2021-03-25T14:25:13.659Z",
"dateReserved": "2021-03-17T00:00:00.000Z",
"dateUpdated": "2024-09-17T03:43:55.497Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2021-3449",
"date": "2026-06-06",
"epss": "0.09859",
"percentile": "0.93139"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.1.1\", \"versionEndExcluding\": \"1.1.1k\", \"matchCriteriaId\": \"B213E696-A6D9-45E7-B4E4-E4CFE54ECEB8\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEECE5FC-CACF-4496-A3E7-164736409252\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:freebsd:freebsd:12.2:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"73D9C08B-8F5B-40C4-A5BD-B00D2E4C012D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:freebsd:freebsd:12.2:p1:*:*:*:*:*:*\", \"matchCriteriaId\": \"62A178A3-6A52-4981-9A27-FB07AD8AF778\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:freebsd:freebsd:12.2:p2:*:*:*:*:*:*\", \"matchCriteriaId\": \"54A487B1-E5CE-4C76-87E8-518D24C5D86D\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*\", \"matchCriteriaId\": \"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:cloud_volumes_ontap_mediator:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"280AA828-6FA9-4260-8EC1-019423B966E1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:e-series_performance_analyzer:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"24B8DB06-590A-4008-B0AB-FCD1401C77C6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F1BE6C1F-2565-4E97-92AA-16563E5660A5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5735E553-9731-4AAC-BCFF-989377F817B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E7CF3019-975D-40BB-A8A4-894E62BD3797\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:santricity_smi-s_provider:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"361B791A-D336-4431-8F68-8135BEFFAEA2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BDFB1169-41A0-4A86-8E4F-FDA9730B1E94\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8ADFF451-740F-4DBA-BD23-3881945D3E40\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tenable:log_correlation_engine:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"6.0.9\", \"matchCriteriaId\": \"4ACF85D6-6B45-43DA-9C01-F0208186F014\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tenable:nessus:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"8.13.1\", \"matchCriteriaId\": \"0AC12300-9051-4C70-9941-9FE5E64B4B30\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tenable:nessus_network_monitor:5.11.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"657682A0-54D5-4DC6-A98E-8BAF685926C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tenable:nessus_network_monitor:5.11.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8FC5C76C-3474-4B26-8CF0-2DFAFA3D5458\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tenable:nessus_network_monitor:5.12.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8661D361-71B5-4C41-A818-C89EC551D900\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tenable:nessus_network_monitor:5.12.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"253603DC-2D92-442A-B3A8-A63E14D8A070\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tenable:nessus_network_monitor:5.13.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8E112CFF-31F9-4D87-9A1B-AE0FCF69615E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"5.13.0\", \"versionEndIncluding\": \"5.17.0\", \"matchCriteriaId\": \"AC1721B5-9FCD-47C3-8338-E02932CF2C05\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A930E247-0B43-43CB-98FF-6CE7B8189835\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mcafee:web_gateway:8.2.19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DEA7F1FD-9FAB-4654-98B0-4588EEC8B69A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mcafee:web_gateway:9.2.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"868B2C4B-CE6B-41DA-A373-7D4FA51EFE9F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mcafee:web_gateway:10.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"550F47A2-3393-481E-BC40-CE606BFA8776\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mcafee:web_gateway_cloud_service:8.2.19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"43392D27-6C07-41C7-A17F-10C433338CE9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mcafee:web_gateway_cloud_service:9.2.10:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8FBF6C4C-195F-49A7-861D-52677D9BE58D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:mcafee:web_gateway_cloud_service:10.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"90732D53-E802-4E1B-B6C8-B1FDCE7905A4\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:checkpoint:quantum_security_management_firmware:r80.40:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A98B128A-C58E-48EC-B691-AF73126A0822\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:checkpoint:quantum_security_management_firmware:r81:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"345B990F-C1C4-440B-804E-0A2882FE7C01\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:checkpoint:quantum_security_management:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"08601413-25E2-4977-B67A-C11A9D788EA8\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:checkpoint:multi-domain_management_firmware:r80.40:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EFC067CC-EB90-43F5-9674-089D5C611573\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:checkpoint:multi-domain_management_firmware:r81:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"80B223A7-1039-445D-ABE1-5E481004D956\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:checkpoint:multi-domain_management:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1584E1B4-412C-40E2-BF07-4E464692F2AE\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r80.40:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A0002A29-8B42-445D-9EC4-58BC93194241\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r81:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3B0EDB21-9305-4601-AB96-A77BD00F311D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:checkpoint:quantum_security_gateway:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9016DDF6-285C-4E64-88D0-29ECCEF048F8\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:communications_communications_policy_management:12.6.0.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"570DB369-A31B-4108-A7FD-09F674129603\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:enterprise_manager_for_storage_management:13.4.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"61516569-C48F-4362-B334-8CA10EDB0EC2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:essbase:21.2:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"394A16F2-CCD4-44E5-BF6B-E0C782A9FA38\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:graalvm:19.3.5:*:*:*:enterprise:*:*:*\", \"matchCriteriaId\": \"058C7C4B-D692-49DE-924A-C2725A8162D3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:graalvm:20.3.1.2:*:*:*:enterprise:*:*:*\", \"matchCriteriaId\": \"0F0434A5-F2A1-4973-917C-A95F2ABE97D1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:graalvm:21.0.0.2:*:*:*:enterprise:*:*:*\", \"matchCriteriaId\": \"96DD93E0-274E-4C36-99F3-EEF085E57655\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"9.2.6.0\", \"matchCriteriaId\": \"86305E47-33E9-411C-B932-08C395C09982\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0B1CAD50-749F-4ADB-A046-BF3585677A58\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql_connectors:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"8.0.23\", \"matchCriteriaId\": \"A8782A14-89B0-45EE-A5CB-FF715F5BA379\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"5.7.33\", \"matchCriteriaId\": \"5C40ECC8-933B-47A4-8082-FCF0EF9C973E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"8.0.15\", \"versionEndIncluding\": \"8.0.23\", \"matchCriteriaId\": \"32714AD7-BCD1-4624-9923-5E6D927CF3CB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:mysql_workbench:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"8.0.23\", \"matchCriteriaId\": \"CB1A94E1-A6C6-488D-A74C-6C0B24637272\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7E1E416B-920B-49A0-9523-382898C2979D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D9DB4A14-2EF5-4B54-95D2-75E6CF9AA0A9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C8AF00C6-B97F-414D-A8DF-057E6BFD8597\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:primavera_unifier:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"17.7\", \"versionEndIncluding\": \"17.12\", \"matchCriteriaId\": \"08FA59A8-6A62-4B33-8952-D6E658F8DAC9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"10864586-270E-4ACF-BDCC-ECFCD299305F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"38340E3C-C452-4370-86D4-355B6B4E0A06\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E9C55C69-E22E-4B80-9371-5CD821D79FE2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:secure_backup:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"18.1.0.1.0\", \"matchCriteriaId\": \"C01E8B82-71C7-4A4A-A70A-7B147524AB4A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:secure_global_desktop:5.6:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9DA11710-9EA8-49B4-8FD1-3AEE442F6ADC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D3E503FB-6279-4D4A-91D8-E237ECF9D2B0\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:sonicwall:sma100_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"10.2.0.0\", \"versionEndExcluding\": \"10.2.1.0-17sv\", \"matchCriteriaId\": \"6E8B6D50-D482-43E9-A20D-FA77FD59AE2D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:sonicwall:sma100:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8E4A2B7B-40F5-4AE0-ACC7-E94B82435DBA\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:sonicwall:capture_client:3.5:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"349EB4AE-65E3-42DC-8F9C-3A1A155324D7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:sonicwall:sonicos:7.0.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2BD8688A-2D55-4A7E-A143-1BD0FCF957B0\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:ruggedcom_rcm1224_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.2\", \"matchCriteriaId\": \"5081E52B-E7C0-46BD-B1D0-2C70ABCC8831\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:ruggedcom_rcm1224:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3747CDD7-E833-4B68-A362-77D6A2E9D888\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_lpe9403_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"058D21EA-E94C-4DDC-AD92-967DAC934457\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_lpe9403:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"52A77C9D-E59C-4397-B834-797D7B334A6B\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_m-800_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.2\", \"matchCriteriaId\": \"424CD8EA-D8CB-40C7-8E0F-AC4B05C59C99\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_m-800:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DFB9921A-5204-40A3-88AB-B7755F5C6875\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_s602_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.1\", \"matchCriteriaId\": \"858B6A84-5D0E-4E23-AE32-A45B51BAC8CF\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_s602:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4D89D82-C2CE-44DC-A05B-B956F20BF4E3\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_s612_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.1\", \"matchCriteriaId\": \"D173626B-9C50-489F-8BA4-1C45E5F96526\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_s612:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CA7B48D2-0D17-420D-AAE1-35E5C0BE2924\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_s615_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.2\", \"matchCriteriaId\": \"E967F5FC-6F3E-4982-8813-CA1DAF3BE165\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_s615:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E917CBBB-EF41-4113-B0CA-EB91889235E7\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_s623_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.1\", \"matchCriteriaId\": \"81F315D8-0B26-4442-B330-85124017A482\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_s623:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F80D9A79-7984-462B-B4B9-6A4429422038\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_s627-2m_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"4.1\", \"matchCriteriaId\": \"6F20F735-7A70-4A24-9621-786F99C8F87D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_s627-2m:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B51B40F8-71D2-4D2D-8EC2-CE154A6D7533\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_sc-600_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.0\", \"matchCriteriaId\": \"973B8030-B630-4D67-B897-25A359A96185\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_sc-600:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"725C671B-D7A0-48CF-8A31-5F9C4173F1DD\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_w700_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"6.5\", \"matchCriteriaId\": \"86EA8E3F-81BD-47BC-9834-A9B69CA7E70C\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_w700:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D3033B1E-57A6-4AE3-A861-7047CF8EAD79\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_w1700_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.0\", \"matchCriteriaId\": \"BE116AD9-B55F-41C8-8B55-329809DB63E1\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_w1700:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5D9A73DD-4A21-4096-B4B6-A0A825E71006\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_xb-200_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"4.3\", \"matchCriteriaId\": \"144CDF5E-7E07-428B-B4DF-C94992B3A44A\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_xb-200:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6CB3CC2D-CBF0-4F53-A412-01BBC39E34C2\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_xc-200_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"4.3\", \"matchCriteriaId\": \"339FFBDF-6957-481F-84CE-878B5CAAD9C8\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_xc-200:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7719E194-EE3D-4CE8-8C85-CF0D82A553AA\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_xf-200ba_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"4.3\", \"matchCriteriaId\": \"6FBB13D3-4E04-4D01-B880-C16C4FFA240B\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_xf-200ba:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"58377C58-F660-4C17-A3CB-BFC2F28848CD\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_xm-400_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"6.4\", \"matchCriteriaId\": \"E40058B3-3726-4F6A-AB41-7679487639F2\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_xm-400:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"798E900F-5EF9-4B39-B8C2-79FAE659E7F5\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_xp-200_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"4.3\", \"matchCriteriaId\": \"1E642D10-E701-44DF-863B-D0DAA5530F50\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_xp-200:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8F962FC7-0616-467F-8CCA-ADEA224B5F7B\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_xr-300wg_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"4.3\", \"matchCriteriaId\": \"4A53C2B5-A3FD-44CC-A78B-D2124EF37DB4\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_xr-300wg:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"434BC9BE-C5DB-4DAF-8E07-DFE4EEA0D7FE\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_xr524-8c_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"6.4\", \"matchCriteriaId\": \"54FBE4D4-F31E-4B61-9216-44C8EC2988AB\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_xr524-8c:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0E6B7D8-3F9E-43D6-AEFE-DEE3993679C5\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_xr526-8c_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"6.4\", \"matchCriteriaId\": \"20511D61-FC1D-453E-BDF6-D3FB9951192A\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_xr526-8c:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"67661569-6233-4C74-9C72-88BD14B257FE\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_xr528-6m_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"6.4\", \"matchCriteriaId\": \"640AC619-B516-46FC-821B-09C4542A3FD6\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_xr528-6m:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3E048C4A-A414-4C87-A865-4D4218AE32EE\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:scalance_xr552-12_firmware:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"6.4\", \"matchCriteriaId\": \"1FB979DB-731B-4693-A9F8-B11ED953717C\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:scalance_xr552-12:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"09743616-31C9-4E47-8A4A-B15D76204BE7\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_cloud_connect_7_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.1\", \"matchCriteriaId\": \"886D2FE6-B054-4E3B-BACB-F08C0A119A80\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_cloud_connect_7_firmware:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3B185B70-CAC9-47AC-8639-7A4707C21540\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_cloud_connect_7:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9FA78457-260C-467B-9785-04B3C8EDF3B3\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_cp_1242-7_gprs_v2_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"3.1\", \"matchCriteriaId\": \"ABEA3BEE-E7AF-4C9A-ADE4-CE7FC1DB7639\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_cp_1242-7_gprs_v2_firmware:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"049460B8-6186-44F9-B41F-284A2EC0B3B4\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_cp_1242-7_gprs_v2:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"205482DA-548C-4757-91F0-1599438873BD\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_hmi_basic_panels_2nd_generation_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"45208694-635A-42AC-B668-8B67C60568B8\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_hmi_basic_panels_2nd_generation:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7D8F8BCE-35CE-492A-8BFE-2C36EA51CE5C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B4C147D9-4649-4289-B18B-55BD6E33521A\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_hmi_comfort_outdoor_panels:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4830E0D-0128-4E5B-AB81-2B238471AE4B\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"54EFA8B5-8DA1-4547-9E15-BDC265C56006\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B1CEB200-E38F-4629-9279-5AF065396678\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_mv500_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DE4FA1E6-4C5A-4CDC-AD40-E384C0BCA90D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_mv500:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"93A5B50E-0316-4189-8F41-54732CFCF63F\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_net_cp_1243-1_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"3.1\", \"matchCriteriaId\": \"D254DA1D-C53E-426B-9C69-580CC47CF0AA\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_net_cp_1243-1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"65278BA0-3C81-4D81-9801-D7BE3A1D7680\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_net_cp1243-7_lte_eu_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"3.1\", \"matchCriteriaId\": \"C06A02ED-0BA3-4A2C-AF0C-689B8AEB34B8\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_net_cp1243-7_lte_eu:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"209C7B1E-10F6-4215-AF69-CC36192E0FCE\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_net_cp1243-7_lte_us_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"3.1\", \"matchCriteriaId\": \"CF8C00EE-1154-440C-A223-A2CE99CE3126\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_net_cp1243-7_lte_us:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"171A9543-E677-422F-8AEA-1BC2D0E53593\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_net_cp_1243-8_irc_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"3.1\", \"matchCriteriaId\": \"DB201DD3-8890-453E-A11E-1E13B3DAB3F9\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_net_cp_1243-8_irc:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"350FD323-C876-4C7A-A2E7-4B0660C87F6C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_net_cp_1542sp-1_irc_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.1\", \"matchCriteriaId\": \"61E498B1-87FF-454B-8DF0-61D0D3208491\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_net_cp_1542sp-1_irc:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C1EE2F10-A7A6-486F-AE5C-53AE25BAF200\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_net_cp_1543-1_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.2\", \"versionEndExcluding\": \"3.0\", \"matchCriteriaId\": \"90FB801F-11B5-438C-98A1-E928BFEA2ADB\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_net_cp_1543-1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F56C2BDC-928E-491A-8E7C-F976B3787C7A\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_net_cp_1543sp-1_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.1\", \"matchCriteriaId\": \"8E4BA1E6-64F7-4B96-8302-134057DAB1BE\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_net_cp_1543sp-1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"783B50B8-2FB7-4982-88AA-B4F2AD094796\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_net_cp_1545-1_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.0\", \"matchCriteriaId\": \"1DCA9544-DD17-4F56-B34C-91A3F37154AF\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_net_cp_1545-1:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1256EB4B-DD8A-4F99-AE69-F74E8F789C63\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_pcs_7_telecontrol_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5C25165E-EDE9-42F1-A3B9-0E47630D49CC\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_pcs_7_telecontrol:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5BF281FB-26E0-43E4-A2B6-4015661368AC\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_pcs_neo_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6EEACFC9-41B7-4EE0-9427-692363880326\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_pcs_neo:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EF3CA343-CA2A-4593-930C-158612CE7A55\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_pdm_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"9.1.0.7\", \"matchCriteriaId\": \"7E9AE23E-7DAE-4191-BA4E-A7CD655C4BC8\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_pdm:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E092B735-42D5-48D5-947B-288C0FA2E180\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_process_historian_opc_ua_server_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2019\", \"matchCriteriaId\": \"D874D636-392A-4750-B976-F411DBCEBA8D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_process_historian_opc_ua_server:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"14EC9343-7778-40B0-A74D-5C156FF2A229\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_rf166c_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"968FBB4E-5B0B-43D4-B3AD-418028093990\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_rf166c:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"391AD485-A49D-43D0-AAE5-1F58B38D4E22\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_rf185c_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5212F097-B65A-4D73-BB6F-49687F8AD980\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_rf185c:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"82494B5E-80EE-47ED-B87E-CF8C8907B6FE\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_rf186c_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D806113B-57EB-4AA0-9D5E-12E30337A93B\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_rf186c:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9B0933EB-82BE-42BB-978B-C9EC2FE1C795\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_rf186ci_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"53FA50A7-2DF6-454E-8A8E-838C392AB417\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_rf186ci:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1EAEB335-BD22-4CEF-A3EA-9D98A09FEBF0\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_rf188c_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F3D41E9-58B3-4251-8710-A8C4A24ABBD3\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_rf188c:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E21F9909-8D80-40BE-81E0-6ED7FE140A3A\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_rf188ci_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FC628CB7-0816-4267-9C5D-954BD0233D2E\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_rf188ci:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0927991-E820-4FC3-9EFE-96E4C9BFCCCD\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_rf360r_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"88E64167-16AA-48D7-BCDC-B15D37FA666D\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_rf360r:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"63F05227-208B-42C8-8D56-A5D106CAD32F\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1211c_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"47F1294A-1C26-4D43-9C53-D833F2510536\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1211c:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3871C0C9-C65E-4E0B-9CA8-75E60066297F\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212c_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4AF60081-D534-44F5-972F-23257F16F372\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1212c:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"07849777-92E7-41D2-9128-F8D20DE15391\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212fc_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"AEF1726E-B56F-4D39-AFF4-E79A3CA00DE6\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1212fc:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"68B3573B-A31E-4489-B2DD-B01B5C1D03CB\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214_fc_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9CC4A9F7-9858-4F95-8097-F8D09DA61314\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214_fc:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B640800C-9263-4BEA-9DA5-1323932540BD\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214c_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"4948734A-0AAD-4D28-B7FF-FFBBB9AA39C6\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214c:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FE17584A-BF7A-48B8-A9CB-477663766C63\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214_fc_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9CC4A9F7-9858-4F95-8097-F8D09DA61314\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214_fc:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B640800C-9263-4BEA-9DA5-1323932540BD\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215_fc_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6EE37798-B068-40E5-BC03-1D8D303E5926\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1215_fc:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"76C7D55C-8D99-4E2F-A254-1BDE2B12A203\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215c_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8E0C491C-5C4A-4F1C-ABD4-9502A54AAA78\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1215c:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CC4698CF-F935-4707-BA91-7E3650C7956C\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1217c_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E7657063-1296-4734-B108-A2FF7A01B07F\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1217c:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"232279DE-CF1C-4A3C-886D-B4CE3F104F09\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_pn\\\\/dp_mfp_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8C477CCD-06C7-4907-8B0C-4FCE7F6DADAD\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4_pn\\\\/dp_mfp:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3BC4FA01-8DDB-41E4-B759-7B504F78AEBC\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:sinamics_connect_300_firmware:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3360ACCE-E735-4E34-B278-0D4460E74CBF\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:sinamics_connect_300:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7B854F5B-78C7-41FE-9364-5E71B36342A3\"}]}]}, {\"operator\": \"AND\", \"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:siemens:tim_1531_irc_firmware:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"2.0\", \"versionEndExcluding\": \"2.2\", \"matchCriteriaId\": \"D2B20D95-C4B3-4D13-A3D8-F22AC42DC059\"}]}, {\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": false, \"criteria\": \"cpe:2.3:h:siemens:tim_1531_irc:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C1D94BEB-BBFB-4258-9835-87DBBB999239\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:simatic_logon:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.6.0.2\", \"matchCriteriaId\": \"D6F24E40-F3F0-48F3-B3DC-5F98B0564F7A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:simatic_logon:1.5:sp3_update_1:*:*:*:*:*:*\", \"matchCriteriaId\": \"423359E5-9C36-4C6B-AB24-B030E6C61D53\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"79EE15DC-74D3-4551-AAD0-EA0CB600DA76\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:simatic_wincc_telecontrol:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F3169FD3-CBA2-417C-95EF-4F8AE9FAB5AD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinec_nms:1.0:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"4ED13FC8-63C0-42C6-A51C-C480C45327C2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinec_nms:1.0:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"E68FE047-8F53-46B8-82D4-9342B1C8CA55\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinec_pni:-:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1353DC31-FB12-427A-B1B2-9164A4BEE14B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinema_server:14.0:-:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0A5CC25-A323-4D49-8989-5A417D12D646\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinema_server:14.0:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"A690BCD3-6497-43F7-8A51-E033B9121DC8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinema_server:14.0:sp2:*:*:*:*:*:*\", \"matchCriteriaId\": \"AA375D44-ECC5-4BD3-A3D5-6D2AA68782D5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinema_server:14.0:sp2_update1:*:*:*:*:*:*\", \"matchCriteriaId\": \"6CD26C73-B61F-424B-91C2-352E2CAE6666\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinema_server:14.0:sp2_update2:*:*:*:*:*:*\", \"matchCriteriaId\": \"DB4EA15F-ECA4-477F-948F-490FC90BC66A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinumerik_opc_ua_server:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ABA14E65-214C-431D-A49A-D8FC142D4541\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:tia_administrator:*:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"915B09CB-CA0A-445B-89D3-16AE9B08858E\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:siemens:sinec_infrastructure_network_services:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"1.0.1.1\", \"matchCriteriaId\": \"B0F46497-4AB0-49A7-9453-CC26837BF253\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\", \"versionStartIncluding\": \"10.0.0\", \"versionEndIncluding\": \"10.12.0\", \"matchCriteriaId\": \"25A3180B-21AF-4010-9DAB-41ADFD2D8031\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*\", \"versionStartIncluding\": \"10.13.0\", \"versionEndIncluding\": \"10.24.0\", \"matchCriteriaId\": \"43B199B4-D89C-483D-ACAE-6CB2A59EE67C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\", \"versionStartIncluding\": \"12.0.0\", \"versionEndIncluding\": \"12.12.0\", \"matchCriteriaId\": \"564ED5C8-50D7-413A-B88E-E62B6C07336A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*\", \"versionStartIncluding\": \"12.13.0\", \"versionEndExcluding\": \"12.22.1\", \"matchCriteriaId\": \"3DEBF7C8-B000-47B9-B597-DC440F2603B3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\", \"versionStartIncluding\": \"14.0.0\", \"versionEndIncluding\": \"14.14.0\", \"matchCriteriaId\": \"428DCD7B-6F66-4F18-B780-5BD80143D482\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*\", \"versionStartIncluding\": \"14.15.0\", \"versionEndExcluding\": \"14.16.1\", \"matchCriteriaId\": \"380D03F3-6A7E-43A2-B002-FB2521FD3C58\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\", \"versionStartIncluding\": \"15.0.0\", \"versionEndExcluding\": \"15.14.0\", \"matchCriteriaId\": \"3ED4D313-F372-4CC1-BE11-6BBA2F0E90E3\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).\"}, {\"lang\": \"es\", \"value\": \"Un servidor OpenSSL TLS puede cometer un fallo si un cliente env\\u00eda un mensaje ClientHello de renegociaci\\u00f3n dise\\u00f1ado maliciosamente.\u0026#xa0;Si una renegociaci\\u00f3n de TLSv1.2 ClientHello omite la extensi\\u00f3n signature_algorithms (donde estaba presente en el ClientHello inicial), pero incluye una extensi\\u00f3n signature_algorithms_cert, se producir\\u00e1 una desreferencia del puntero NULL, lo que conllevar\\u00e1 un bloqueo y un ataque de denegaci\\u00f3n de servicio.\u0026#xa0;Un servidor solo es vulnerable si tiene TLSv1.2 y la renegociaci\\u00f3n habilitada (que es la configuraci\\u00f3n predeterminada).\u0026#xa0;Los clientes de OpenSSL TLS no est\\u00e1n afectados por este problema.\u0026#xa0;Todas las versiones de OpenSSL versi\\u00f3n 1.1.1 est\\u00e1n afectadas por este problema.\u0026#xa0;Los usuarios de estas versiones deben actualizar a OpenSSL versi\\u00f3n 1.1.1k.\u0026#xa0;OpenSSL versi\\u00f3n 1.0.2 no est\\u00e1 afectado por este problema.\u0026#xa0;Corregido en OpenSSL versi\\u00f3n 1.1.1k (Afectadas versiones 1.1.1-1.1.1j)\"}]",
"id": "CVE-2021-3449",
"lastModified": "2024-11-21T06:21:33.050",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 5.9, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.2, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:M/Au:N/C:N/I:N/A:P\", \"baseScore\": 4.3, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"MEDIUM\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 8.6, \"impactScore\": 2.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
"published": "2021-03-25T15:15:13.450",
"references": "[{\"url\": \"http://www.openwall.com/lists/oss-security/2021/03/27/1\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2021/03/27/2\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2021/03/28/3\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2021/03/28/4\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=fb9fa6b51defd48157eeb207f52181f735d96148\", \"source\": \"openssl-security@openssl.org\"}, {\"url\": \"https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10356\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/\", \"source\": \"openssl-security@openssl.org\"}, {\"url\": \"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202103-03\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20210326-0006/\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20210513-0002/\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240621-0006/\", \"source\": \"openssl-security@openssl.org\"}, {\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2021/dsa-4875\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.openssl.org/news/secadv/20210325.txt\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.oracle.com//security-alerts/cpujul2021.html\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuApr2021.html\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuapr2022.html\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2022.html\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuoct2021.html\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.tenable.com/security/tns-2021-05\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.tenable.com/security/tns-2021-06\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.tenable.com/security/tns-2021-09\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.tenable.com/security/tns-2021-10\", \"source\": \"openssl-security@openssl.org\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2021/03/27/1\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2021/03/27/2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2021/03/28/3\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"http://www.openwall.com/lists/oss-security/2021/03/28/4\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=fb9fa6b51defd48157eeb207f52181f735d96148\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10356\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Mailing List\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.gentoo.org/glsa/202103-03\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20210326-0006/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20210513-0002/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://security.netapp.com/advisory/ntap-20240621-0006/\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.debian.org/security/2021/dsa-4875\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.openssl.org/news/secadv/20210325.txt\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"https://www.oracle.com//security-alerts/cpujul2021.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuApr2021.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuapr2022.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpujul2022.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.oracle.com/security-alerts/cpuoct2021.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.tenable.com/security/tns-2021-05\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.tenable.com/security/tns-2021-06\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.tenable.com/security/tns-2021-09\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}, {\"url\": \"https://www.tenable.com/security/tns-2021-10\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\"]}]",
"sourceIdentifier": "openssl-security@openssl.org",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-476\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2021-3449\",\"sourceIdentifier\":\"openssl-security@openssl.org\",\"published\":\"2021-03-25T15:15:13.450\",\"lastModified\":\"2024-11-21T06:21:33.050\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_cert extension then a NULL pointer dereference will result, leading to a crash and a denial of service attack. A server is only vulnerable if it has TLSv1.2 and renegotiation enabled (which is the default configuration). OpenSSL TLS clients are not impacted by this issue. All OpenSSL 1.1.1 versions are affected by this issue. Users of these versions should upgrade to OpenSSL 1.1.1k. OpenSSL 1.0.2 is not impacted by this issue. Fixed in OpenSSL 1.1.1k (Affected 1.1.1-1.1.1j).\"},{\"lang\":\"es\",\"value\":\"Un servidor OpenSSL TLS puede cometer un fallo si un cliente env\u00eda un mensaje ClientHello de renegociaci\u00f3n dise\u00f1ado maliciosamente.\u0026#xa0;Si una renegociaci\u00f3n de TLSv1.2 ClientHello omite la extensi\u00f3n signature_algorithms (donde estaba presente en el ClientHello inicial), pero incluye una extensi\u00f3n signature_algorithms_cert, se producir\u00e1 una desreferencia del puntero NULL, lo que conllevar\u00e1 un bloqueo y un ataque de denegaci\u00f3n de servicio.\u0026#xa0;Un servidor solo es vulnerable si tiene TLSv1.2 y la renegociaci\u00f3n habilitada (que es la configuraci\u00f3n predeterminada).\u0026#xa0;Los clientes de OpenSSL TLS no est\u00e1n afectados por este problema.\u0026#xa0;Todas las versiones de OpenSSL versi\u00f3n 1.1.1 est\u00e1n afectadas por este problema.\u0026#xa0;Los usuarios de estas versiones deben actualizar a OpenSSL versi\u00f3n 1.1.1k.\u0026#xa0;OpenSSL versi\u00f3n 1.0.2 no est\u00e1 afectado por este problema.\u0026#xa0;Corregido en OpenSSL versi\u00f3n 1.1.1k (Afectadas versiones 1.1.1-1.1.1j)\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.9,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.2,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:M/Au:N/C:N/I:N/A:P\",\"baseScore\":4.3,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"MEDIUM\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.6,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-476\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:openssl:openssl:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.1.1\",\"versionEndExcluding\":\"1.1.1k\",\"matchCriteriaId\":\"B213E696-A6D9-45E7-B4E4-E4CFE54ECEB8\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07B237A9-69A3-4A9C-9DA0-4E06BD37AE73\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:freebsd:freebsd:12.2:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"73D9C08B-8F5B-40C4-A5BD-B00D2E4C012D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:freebsd:freebsd:12.2:p1:*:*:*:*:*:*\",\"matchCriteriaId\":\"62A178A3-6A52-4981-9A27-FB07AD8AF778\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:freebsd:freebsd:12.2:p2:*:*:*:*:*:*\",\"matchCriteriaId\":\"54A487B1-E5CE-4C76-87E8-518D24C5D86D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:active_iq_unified_manager:-:*:*:*:*:vmware_vsphere:*:*\",\"matchCriteriaId\":\"3A756737-1CC4-42C2-A4DF-E1C893B4E2D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:cloud_volumes_ontap_mediator:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"280AA828-6FA9-4260-8EC1-019423B966E1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:e-series_performance_analyzer:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"24B8DB06-590A-4008-B0AB-FCD1401C77C6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_insight:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1BE6C1F-2565-4E97-92AA-16563E5660A5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:oncommand_workflow_automation:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5735E553-9731-4AAC-BCFF-989377F817B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:ontap_select_deploy_administration_utility:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7CF3019-975D-40BB-A8A4-894E62BD3797\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:santricity_smi-s_provider:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"361B791A-D336-4431-8F68-8135BEFFAEA2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:snapcenter:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDFB1169-41A0-4A86-8E4F-FDA9730B1E94\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:netapp:storagegrid:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8ADFF451-740F-4DBA-BD23-3881945D3E40\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tenable:log_correlation_engine:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.0.9\",\"matchCriteriaId\":\"4ACF85D6-6B45-43DA-9C01-F0208186F014\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tenable:nessus:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"8.13.1\",\"matchCriteriaId\":\"0AC12300-9051-4C70-9941-9FE5E64B4B30\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tenable:nessus_network_monitor:5.11.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"657682A0-54D5-4DC6-A98E-8BAF685926C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tenable:nessus_network_monitor:5.11.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FC5C76C-3474-4B26-8CF0-2DFAFA3D5458\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tenable:nessus_network_monitor:5.12.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8661D361-71B5-4C41-A818-C89EC551D900\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tenable:nessus_network_monitor:5.12.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"253603DC-2D92-442A-B3A8-A63E14D8A070\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tenable:nessus_network_monitor:5.13.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E112CFF-31F9-4D87-9A1B-AE0FCF69615E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:tenable:tenable.sc:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"5.13.0\",\"versionEndIncluding\":\"5.17.0\",\"matchCriteriaId\":\"AC1721B5-9FCD-47C3-8338-E02932CF2C05\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:34:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A930E247-0B43-43CB-98FF-6CE7B8189835\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:web_gateway:8.2.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEA7F1FD-9FAB-4654-98B0-4588EEC8B69A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:web_gateway:9.2.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"868B2C4B-CE6B-41DA-A373-7D4FA51EFE9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:web_gateway:10.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"550F47A2-3393-481E-BC40-CE606BFA8776\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:web_gateway_cloud_service:8.2.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"43392D27-6C07-41C7-A17F-10C433338CE9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:web_gateway_cloud_service:9.2.10:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FBF6C4C-195F-49A7-861D-52677D9BE58D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:mcafee:web_gateway_cloud_service:10.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"90732D53-E802-4E1B-B6C8-B1FDCE7905A4\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:checkpoint:quantum_security_management_firmware:r80.40:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A98B128A-C58E-48EC-B691-AF73126A0822\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:checkpoint:quantum_security_management_firmware:r81:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"345B990F-C1C4-440B-804E-0A2882FE7C01\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:checkpoint:quantum_security_management:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08601413-25E2-4977-B67A-C11A9D788EA8\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:checkpoint:multi-domain_management_firmware:r80.40:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EFC067CC-EB90-43F5-9674-089D5C611573\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:checkpoint:multi-domain_management_firmware:r81:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80B223A7-1039-445D-ABE1-5E481004D956\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:checkpoint:multi-domain_management:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1584E1B4-412C-40E2-BF07-4E464692F2AE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r80.40:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0002A29-8B42-445D-9EC4-58BC93194241\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:checkpoint:quantum_security_gateway_firmware:r81:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3B0EDB21-9305-4601-AB96-A77BD00F311D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:checkpoint:quantum_security_gateway:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9016DDF6-285C-4E64-88D0-29ECCEF048F8\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:communications_communications_policy_management:12.6.0.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"570DB369-A31B-4108-A7FD-09F674129603\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:enterprise_manager_for_storage_management:13.4.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61516569-C48F-4362-B334-8CA10EDB0EC2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:essbase:21.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"394A16F2-CCD4-44E5-BF6B-E0C782A9FA38\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:graalvm:19.3.5:*:*:*:enterprise:*:*:*\",\"matchCriteriaId\":\"058C7C4B-D692-49DE-924A-C2725A8162D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:graalvm:20.3.1.2:*:*:*:enterprise:*:*:*\",\"matchCriteriaId\":\"0F0434A5-F2A1-4973-917C-A95F2ABE97D1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:graalvm:21.0.0.2:*:*:*:enterprise:*:*:*\",\"matchCriteriaId\":\"96DD93E0-274E-4C36-99F3-EEF085E57655\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jd_edwards_enterpriseone_tools:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"9.2.6.0\",\"matchCriteriaId\":\"86305E47-33E9-411C-B932-08C395C09982\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:jd_edwards_world_security:a9.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B1CAD50-749F-4ADB-A046-BF3585677A58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql_connectors:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"8.0.23\",\"matchCriteriaId\":\"A8782A14-89B0-45EE-A5CB-FF715F5BA379\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"5.7.33\",\"matchCriteriaId\":\"5C40ECC8-933B-47A4-8082-FCF0EF9C973E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql_server:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"8.0.15\",\"versionEndIncluding\":\"8.0.23\",\"matchCriteriaId\":\"32714AD7-BCD1-4624-9923-5E6D927CF3CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:mysql_workbench:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"8.0.23\",\"matchCriteriaId\":\"CB1A94E1-A6C6-488D-A74C-6C0B24637272\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.57:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7E1E416B-920B-49A0-9523-382898C2979D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.58:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9DB4A14-2EF5-4B54-95D2-75E6CF9AA0A9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:peoplesoft_enterprise_peopletools:8.59:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C8AF00C6-B97F-414D-A8DF-057E6BFD8597\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"17.7\",\"versionEndIncluding\":\"17.12\",\"matchCriteriaId\":\"08FA59A8-6A62-4B33-8952-D6E658F8DAC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:19.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"10864586-270E-4ACF-BDCC-ECFCD299305F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:20.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38340E3C-C452-4370-86D4-355B6B4E0A06\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:primavera_unifier:21.12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9C55C69-E22E-4B80-9371-5CD821D79FE2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:secure_backup:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"18.1.0.1.0\",\"matchCriteriaId\":\"C01E8B82-71C7-4A4A-A70A-7B147524AB4A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:secure_global_desktop:5.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9DA11710-9EA8-49B4-8FD1-3AEE442F6ADC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:oracle:zfs_storage_appliance_kit:8.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3E503FB-6279-4D4A-91D8-E237ECF9D2B0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sonicwall:sma100_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"10.2.0.0\",\"versionEndExcluding\":\"10.2.1.0-17sv\",\"matchCriteriaId\":\"6E8B6D50-D482-43E9-A20D-FA77FD59AE2D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:sonicwall:sma100:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E4A2B7B-40F5-4AE0-ACC7-E94B82435DBA\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:sonicwall:capture_client:3.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"349EB4AE-65E3-42DC-8F9C-3A1A155324D7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:sonicwall:sonicos:7.0.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2BD8688A-2D55-4A7E-A143-1BD0FCF957B0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:ruggedcom_rcm1224_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"matchCriteriaId\":\"5081E52B-E7C0-46BD-B1D0-2C70ABCC8831\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:ruggedcom_rcm1224:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3747CDD7-E833-4B68-A362-77D6A2E9D888\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_lpe9403_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"058D21EA-E94C-4DDC-AD92-967DAC934457\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_lpe9403:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52A77C9D-E59C-4397-B834-797D7B334A6B\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_m-800_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"matchCriteriaId\":\"424CD8EA-D8CB-40C7-8E0F-AC4B05C59C99\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_m-800:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DFB9921A-5204-40A3-88AB-B7755F5C6875\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_s602_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"matchCriteriaId\":\"858B6A84-5D0E-4E23-AE32-A45B51BAC8CF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_s602:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4D89D82-C2CE-44DC-A05B-B956F20BF4E3\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_s612_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"matchCriteriaId\":\"D173626B-9C50-489F-8BA4-1C45E5F96526\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_s612:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA7B48D2-0D17-420D-AAE1-35E5C0BE2924\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_s615_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.2\",\"matchCriteriaId\":\"E967F5FC-6F3E-4982-8813-CA1DAF3BE165\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_s615:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E917CBBB-EF41-4113-B0CA-EB91889235E7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_s623_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"matchCriteriaId\":\"81F315D8-0B26-4442-B330-85124017A482\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_s623:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F80D9A79-7984-462B-B4B9-6A4429422038\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_s627-2m_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"4.1\",\"matchCriteriaId\":\"6F20F735-7A70-4A24-9621-786F99C8F87D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_s627-2m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B51B40F8-71D2-4D2D-8EC2-CE154A6D7533\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_sc-600_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0\",\"matchCriteriaId\":\"973B8030-B630-4D67-B897-25A359A96185\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_sc-600:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"725C671B-D7A0-48CF-8A31-5F9C4173F1DD\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_w700_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"6.5\",\"matchCriteriaId\":\"86EA8E3F-81BD-47BC-9834-A9B69CA7E70C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_w700:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3033B1E-57A6-4AE3-A861-7047CF8EAD79\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_w1700_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0\",\"matchCriteriaId\":\"BE116AD9-B55F-41C8-8B55-329809DB63E1\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_w1700:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D9A73DD-4A21-4096-B4B6-A0A825E71006\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xb-200_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.3\",\"matchCriteriaId\":\"144CDF5E-7E07-428B-B4DF-C94992B3A44A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xb-200:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6CB3CC2D-CBF0-4F53-A412-01BBC39E34C2\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xc-200_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.3\",\"matchCriteriaId\":\"339FFBDF-6957-481F-84CE-878B5CAAD9C8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xc-200:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7719E194-EE3D-4CE8-8C85-CF0D82A553AA\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xf-200ba_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.3\",\"matchCriteriaId\":\"6FBB13D3-4E04-4D01-B880-C16C4FFA240B\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xf-200ba:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"58377C58-F660-4C17-A3CB-BFC2F28848CD\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xm-400_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.4\",\"matchCriteriaId\":\"E40058B3-3726-4F6A-AB41-7679487639F2\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xm-400:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"798E900F-5EF9-4B39-B8C2-79FAE659E7F5\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xp-200_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.3\",\"matchCriteriaId\":\"1E642D10-E701-44DF-863B-D0DAA5530F50\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xp-200:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F962FC7-0616-467F-8CCA-ADEA224B5F7B\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr-300wg_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"4.3\",\"matchCriteriaId\":\"4A53C2B5-A3FD-44CC-A78B-D2124EF37DB4\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr-300wg:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"434BC9BE-C5DB-4DAF-8E07-DFE4EEA0D7FE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr524-8c_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.4\",\"matchCriteriaId\":\"54FBE4D4-F31E-4B61-9216-44C8EC2988AB\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr524-8c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0E6B7D8-3F9E-43D6-AEFE-DEE3993679C5\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr526-8c_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.4\",\"matchCriteriaId\":\"20511D61-FC1D-453E-BDF6-D3FB9951192A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr526-8c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"67661569-6233-4C74-9C72-88BD14B257FE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr528-6m_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.4\",\"matchCriteriaId\":\"640AC619-B516-46FC-821B-09C4542A3FD6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr528-6m:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3E048C4A-A414-4C87-A865-4D4218AE32EE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:scalance_xr552-12_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.4\",\"matchCriteriaId\":\"1FB979DB-731B-4693-A9F8-B11ED953717C\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:scalance_xr552-12:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09743616-31C9-4E47-8A4A-B15D76204BE7\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_cloud_connect_7_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.1\",\"matchCriteriaId\":\"886D2FE6-B054-4E3B-BACB-F08C0A119A80\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_cloud_connect_7_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3B185B70-CAC9-47AC-8639-7A4707C21540\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_cloud_connect_7:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FA78457-260C-467B-9785-04B3C8EDF3B3\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_cp_1242-7_gprs_v2_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.1\",\"matchCriteriaId\":\"ABEA3BEE-E7AF-4C9A-ADE4-CE7FC1DB7639\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_cp_1242-7_gprs_v2_firmware:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"049460B8-6186-44F9-B41F-284A2EC0B3B4\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_cp_1242-7_gprs_v2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"205482DA-548C-4757-91F0-1599438873BD\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_hmi_basic_panels_2nd_generation_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45208694-635A-42AC-B668-8B67C60568B8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_hmi_basic_panels_2nd_generation:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D8F8BCE-35CE-492A-8BFE-2C36EA51CE5C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_hmi_comfort_outdoor_panels_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B4C147D9-4649-4289-B18B-55BD6E33521A\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_hmi_comfort_outdoor_panels:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4830E0D-0128-4E5B-AB81-2B238471AE4B\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_hmi_ktp_mobile_panels_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"54EFA8B5-8DA1-4547-9E15-BDC265C56006\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_hmi_ktp_mobile_panels:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B1CEB200-E38F-4629-9279-5AF065396678\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_mv500_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE4FA1E6-4C5A-4CDC-AD40-E384C0BCA90D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_mv500:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"93A5B50E-0316-4189-8F41-54732CFCF63F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_net_cp_1243-1_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.1\",\"matchCriteriaId\":\"D254DA1D-C53E-426B-9C69-580CC47CF0AA\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_net_cp_1243-1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65278BA0-3C81-4D81-9801-D7BE3A1D7680\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_net_cp1243-7_lte_eu_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.1\",\"matchCriteriaId\":\"C06A02ED-0BA3-4A2C-AF0C-689B8AEB34B8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_net_cp1243-7_lte_eu:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"209C7B1E-10F6-4215-AF69-CC36192E0FCE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_net_cp1243-7_lte_us_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.1\",\"matchCriteriaId\":\"CF8C00EE-1154-440C-A223-A2CE99CE3126\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_net_cp1243-7_lte_us:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"171A9543-E677-422F-8AEA-1BC2D0E53593\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_net_cp_1243-8_irc_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"3.1\",\"matchCriteriaId\":\"DB201DD3-8890-453E-A11E-1E13B3DAB3F9\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_net_cp_1243-8_irc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"350FD323-C876-4C7A-A2E7-4B0660C87F6C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_net_cp_1542sp-1_irc_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.1\",\"matchCriteriaId\":\"61E498B1-87FF-454B-8DF0-61D0D3208491\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_net_cp_1542sp-1_irc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1EE2F10-A7A6-486F-AE5C-53AE25BAF200\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_net_cp_1543-1_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.2\",\"versionEndExcluding\":\"3.0\",\"matchCriteriaId\":\"90FB801F-11B5-438C-98A1-E928BFEA2ADB\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_net_cp_1543-1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F56C2BDC-928E-491A-8E7C-F976B3787C7A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_net_cp_1543sp-1_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.1\",\"matchCriteriaId\":\"8E4BA1E6-64F7-4B96-8302-134057DAB1BE\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_net_cp_1543sp-1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"783B50B8-2FB7-4982-88AA-B4F2AD094796\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_net_cp_1545-1_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.0\",\"matchCriteriaId\":\"1DCA9544-DD17-4F56-B34C-91A3F37154AF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_net_cp_1545-1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1256EB4B-DD8A-4F99-AE69-F74E8F789C63\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_pcs_7_telecontrol_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5C25165E-EDE9-42F1-A3B9-0E47630D49CC\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_pcs_7_telecontrol:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5BF281FB-26E0-43E4-A2B6-4015661368AC\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_pcs_neo_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6EEACFC9-41B7-4EE0-9427-692363880326\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_pcs_neo:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF3CA343-CA2A-4593-930C-158612CE7A55\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_pdm_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"9.1.0.7\",\"matchCriteriaId\":\"7E9AE23E-7DAE-4191-BA4E-A7CD655C4BC8\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_pdm:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E092B735-42D5-48D5-947B-288C0FA2E180\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_process_historian_opc_ua_server_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2019\",\"matchCriteriaId\":\"D874D636-392A-4750-B976-F411DBCEBA8D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_process_historian_opc_ua_server:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"14EC9343-7778-40B0-A74D-5C156FF2A229\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_rf166c_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"968FBB4E-5B0B-43D4-B3AD-418028093990\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_rf166c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"391AD485-A49D-43D0-AAE5-1F58B38D4E22\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_rf185c_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5212F097-B65A-4D73-BB6F-49687F8AD980\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_rf185c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"82494B5E-80EE-47ED-B87E-CF8C8907B6FE\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_rf186c_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D806113B-57EB-4AA0-9D5E-12E30337A93B\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_rf186c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9B0933EB-82BE-42BB-978B-C9EC2FE1C795\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_rf186ci_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"53FA50A7-2DF6-454E-8A8E-838C392AB417\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_rf186ci:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1EAEB335-BD22-4CEF-A3EA-9D98A09FEBF0\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_rf188c_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F3D41E9-58B3-4251-8710-A8C4A24ABBD3\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_rf188c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E21F9909-8D80-40BE-81E0-6ED7FE140A3A\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_rf188ci_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FC628CB7-0816-4267-9C5D-954BD0233D2E\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_rf188ci:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0927991-E820-4FC3-9EFE-96E4C9BFCCCD\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_rf360r_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88E64167-16AA-48D7-BCDC-B15D37FA666D\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_rf360r:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"63F05227-208B-42C8-8D56-A5D106CAD32F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1211c_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"47F1294A-1C26-4D43-9C53-D833F2510536\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1211c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3871C0C9-C65E-4E0B-9CA8-75E60066297F\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212c_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4AF60081-D534-44F5-972F-23257F16F372\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1212c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"07849777-92E7-41D2-9128-F8D20DE15391\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1212fc_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AEF1726E-B56F-4D39-AFF4-E79A3CA00DE6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1212fc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68B3573B-A31E-4489-B2DD-B01B5C1D03CB\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214_fc_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9CC4A9F7-9858-4F95-8097-F8D09DA61314\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214_fc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B640800C-9263-4BEA-9DA5-1323932540BD\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214c_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4948734A-0AAD-4D28-B7FF-FFBBB9AA39C6\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE17584A-BF7A-48B8-A9CB-477663766C63\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1214_fc_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9CC4A9F7-9858-4F95-8097-F8D09DA61314\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1214_fc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B640800C-9263-4BEA-9DA5-1323932540BD\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215_fc_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6EE37798-B068-40E5-BC03-1D8D303E5926\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1215_fc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"76C7D55C-8D99-4E2F-A254-1BDE2B12A203\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1215c_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8E0C491C-5C4A-4F1C-ABD4-9502A54AAA78\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1215c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC4698CF-F935-4707-BA91-7E3650C7956C\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1200_cpu_1217c_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7657063-1296-4734-B108-A2FF7A01B07F\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1200_cpu_1217c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"232279DE-CF1C-4A3C-886D-B4CE3F104F09\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:simatic_s7-1500_cpu_1518-4_pn\\\\/dp_mfp_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C477CCD-06C7-4907-8B0C-4FCE7F6DADAD\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:simatic_s7-1500_cpu_1518-4_pn\\\\/dp_mfp:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3BC4FA01-8DDB-41E4-B759-7B504F78AEBC\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:sinamics_connect_300_firmware:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3360ACCE-E735-4E34-B278-0D4460E74CBF\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:sinamics_connect_300:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B854F5B-78C7-41FE-9364-5E71B36342A3\"}]}]},{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:siemens:tim_1531_irc_firmware:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0\",\"versionEndExcluding\":\"2.2\",\"matchCriteriaId\":\"D2B20D95-C4B3-4D13-A3D8-F22AC42DC059\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:siemens:tim_1531_irc:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1D94BEB-BBFB-4258-9835-87DBBB999239\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:simatic_logon:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.6.0.2\",\"matchCriteriaId\":\"D6F24E40-F3F0-48F3-B3DC-5F98B0564F7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:simatic_logon:1.5:sp3_update_1:*:*:*:*:*:*\",\"matchCriteriaId\":\"423359E5-9C36-4C6B-AB24-B030E6C61D53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:simatic_wincc_runtime_advanced:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79EE15DC-74D3-4551-AAD0-EA0CB600DA76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:simatic_wincc_telecontrol:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3169FD3-CBA2-417C-95EF-4F8AE9FAB5AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_nms:1.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"4ED13FC8-63C0-42C6-A51C-C480C45327C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_nms:1.0:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"E68FE047-8F53-46B8-82D4-9342B1C8CA55\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_pni:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1353DC31-FB12-427A-B1B2-9164A4BEE14B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinema_server:14.0:-:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0A5CC25-A323-4D49-8989-5A417D12D646\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinema_server:14.0:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"A690BCD3-6497-43F7-8A51-E033B9121DC8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinema_server:14.0:sp2:*:*:*:*:*:*\",\"matchCriteriaId\":\"AA375D44-ECC5-4BD3-A3D5-6D2AA68782D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinema_server:14.0:sp2_update1:*:*:*:*:*:*\",\"matchCriteriaId\":\"6CD26C73-B61F-424B-91C2-352E2CAE6666\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinema_server:14.0:sp2_update2:*:*:*:*:*:*\",\"matchCriteriaId\":\"DB4EA15F-ECA4-477F-948F-490FC90BC66A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinumerik_opc_ua_server:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ABA14E65-214C-431D-A49A-D8FC142D4541\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:tia_administrator:*:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"915B09CB-CA0A-445B-89D3-16AE9B08858E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:siemens:sinec_infrastructure_network_services:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.0.1.1\",\"matchCriteriaId\":\"B0F46497-4AB0-49A7-9453-CC26837BF253\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"10.0.0\",\"versionEndIncluding\":\"10.12.0\",\"matchCriteriaId\":\"25A3180B-21AF-4010-9DAB-41ADFD2D8031\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*\",\"versionStartIncluding\":\"10.13.0\",\"versionEndIncluding\":\"10.24.0\",\"matchCriteriaId\":\"43B199B4-D89C-483D-ACAE-6CB2A59EE67C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"12.0.0\",\"versionEndIncluding\":\"12.12.0\",\"matchCriteriaId\":\"564ED5C8-50D7-413A-B88E-E62B6C07336A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*\",\"versionStartIncluding\":\"12.13.0\",\"versionEndExcluding\":\"12.22.1\",\"matchCriteriaId\":\"3DEBF7C8-B000-47B9-B597-DC440F2603B3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"14.0.0\",\"versionEndIncluding\":\"14.14.0\",\"matchCriteriaId\":\"428DCD7B-6F66-4F18-B780-5BD80143D482\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:lts:*:*:*\",\"versionStartIncluding\":\"14.15.0\",\"versionEndExcluding\":\"14.16.1\",\"matchCriteriaId\":\"380D03F3-6A7E-43A2-B002-FB2521FD3C58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:nodejs:node.js:*:*:*:*:-:*:*:*\",\"versionStartIncluding\":\"15.0.0\",\"versionEndExcluding\":\"15.14.0\",\"matchCriteriaId\":\"3ED4D313-F372-4CC1-BE11-6BBA2F0E90E3\"}]}]}],\"references\":[{\"url\":\"http://www.openwall.com/lists/oss-security/2021/03/27/1\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2021/03/27/2\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2021/03/28/3\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2021/03/28/4\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=fb9fa6b51defd48157eeb207f52181f735d96148\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10356\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202103-03\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20210326-0006/\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20210513-0002/\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240621-0006/\",\"source\":\"openssl-security@openssl.org\"},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2021/dsa-4875\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.openssl.org/news/secadv/20210325.txt\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.oracle.com//security-alerts/cpujul2021.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuApr2021.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2022.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2022.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2021.html\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2021-05\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2021-06\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2021-09\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2021-10\",\"source\":\"openssl-security@openssl.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2021/03/27/1\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2021/03/27/2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2021/03/28/3\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"http://www.openwall.com/lists/oss-security/2021/03/28/4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-389290.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://cert-portal.siemens.com/productcert/pdf/ssa-772220.pdf\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commitdiff%3Bh=fb9fa6b51defd48157eeb207f52181f735d96148\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44845\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10356\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/08/msg00029.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CCBFLLVQVILIVGZMBJL3IXZGKWQISYNP/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2021-0013\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.FreeBSD.org/advisories/FreeBSD-SA-21:07.openssl.asc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.gentoo.org/glsa/202103-03\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20210326-0006/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20210513-0002/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://security.netapp.com/advisory/ntap-20240621-0006/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-openssl-2021-GHY28dJd\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.debian.org/security/2021/dsa-4875\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.openssl.org/news/secadv/20210325.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"https://www.oracle.com//security-alerts/cpujul2021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuApr2021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuapr2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpujul2022.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2021.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2021-05\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2021-06\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2021-09\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.tenable.com/security/tns-2021-10\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]}]}}"
}
}
RHSA-2021:1189
Vulnerability from csaf_redhat - Published: 2021-04-14 11:42 - Updated: 2026-05-14 22:31Summary
Red Hat Security Advisory: Red Hat Virtualization security, bug fix, and enhancement update
Severity
Important
Notes
Topic: An update is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks.
The ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host's resources and performing administrative tasks.
Changes to the redhat-release-virtualization-host component:
* Previously, the redhat-support-tool was missing from the RHV-H 4.4 package.
In this release, the redhat-support-tool has been added. (BZ#1928607)
Security Fix(es):
* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)
* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.
5.9 (Medium)
Affected products
Fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch | — |
Vendor Fix
fix
Workaround
|
Known not affected
122 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-0:1.66.0-10.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-container-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-context-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-date-time-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-debugsource-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-filesystem-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-graph-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-locale-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-log-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-math-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-python3-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-random-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-regex-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-signals-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-system-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-system-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-test-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-thread-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-timer-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-timer-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-wave-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:cpp-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:cpp-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:dyninst-debuginfo-0:10.1.0-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:dyninst-debugsource-0:10.1.0-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-debugsource-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:glibc-debuginfo-0:2.28-127.el8_3.2.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:glibc-devel-0:2.28-127.el8_3.2.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:glibc-headers-0:2.28-127.el8_3.2.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:isl-debugsource-0:0.16.1-6.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libasan-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libgcc-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libgomp-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libitm-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libmpc-debuginfo-0:1.0.2-9.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libmpc-debugsource-0:1.0.2-9.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libxcrypt-0:4.1.1-4.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libxcrypt-debugsource-0:4.1.1-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libxcrypt-devel-0:4.1.1-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:make-debugsource-1:4.2.1-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:perf-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:tbb-debugsource-0:2018.2-9.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-common-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-common-debuginfo-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-debuginfo-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-debugsource-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-enhanced-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-filesystem-2:8.0.1763-15.el8.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:zip-debugsource-0:3.0-23.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.18-0.1.el8ev.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:scap-security-guide-0:0.1.50-1.el8ev.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch | — |
Workaround
|
Threats
Impact
Important
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.
7.4 (High)
Affected products
Fixed
2 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch | — |
Vendor Fix
fix
Workaround
|
Known not affected
122 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-0:1.66.0-10.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-container-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-context-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-date-time-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-debugsource-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-filesystem-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-graph-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-locale-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-log-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-math-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-python3-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-random-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-regex-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-signals-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-system-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-system-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-test-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-thread-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-timer-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-timer-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:boost-wave-debuginfo-0:1.66.0-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:cpp-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:cpp-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:dyninst-debuginfo-0:10.1.0-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:dyninst-debugsource-0:10.1.0-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-debugsource-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:glibc-debuginfo-0:2.28-127.el8_3.2.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:glibc-devel-0:2.28-127.el8_3.2.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:glibc-headers-0:2.28-127.el8_3.2.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:isl-debugsource-0:0.16.1-6.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libasan-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libgcc-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libgomp-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libitm-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libmpc-debuginfo-0:1.0.2-9.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libmpc-debugsource-0:1.0.2-9.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libxcrypt-0:4.1.1-4.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libxcrypt-debugsource-0:4.1.1-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:libxcrypt-devel-0:4.1.1-4.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:make-debugsource-1:4.2.1-10.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:perf-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:tbb-debugsource-0:2018.2-9.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-common-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-common-debuginfo-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-debuginfo-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-debugsource-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-enhanced-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-filesystem-2:8.0.1763-15.el8.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-Hypervisor-4:zip-debugsource-0:3.0-23.el8.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.18-0.1.el8ev.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64 | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:scap-security-guide-0:0.1.50-1.el8ev.src | — |
Workaround
|
|
| Unresolved product id: 8Base-RHV-HypervisorBuild-4:scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch | — |
Workaround
|
Threats
Impact
Important
References
25 references
Acknowledgments
the OpenSSL project
Nokia
the OpenSSL Project
Benjamin Kaduk
Akamai
Xiang Ding and others
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat Virtualization 4 for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The redhat-virtualization-host packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host\u0027s resources and performing administrative tasks.\n\nThe ovirt-node-ng packages provide the Red Hat Virtualization Host. These packages include redhat-release-virtualization-host, ovirt-node, and rhev-hypervisor. Red Hat Virtualization Hosts (RHVH) are installed using a special build of Red Hat Enterprise Linux with only the packages required to host virtual machines. RHVH features a Cockpit user interface for monitoring the host\u0027s resources and performing administrative tasks.\n\nChanges to the redhat-release-virtualization-host component:\n\n* Previously, the redhat-support-tool was missing from the RHV-H 4.4 package. \nIn this release, the redhat-support-tool has been added. (BZ#1928607)\n\nSecurity Fix(es):\n\n* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)\n\n* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:1189",
"url": "https://access.redhat.com/errata/RHSA-2021:1189"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1892573",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1892573"
},
{
"category": "external",
"summary": "1895832",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1895832"
},
{
"category": "external",
"summary": "1907306",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1907306"
},
{
"category": "external",
"summary": "1907358",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1907358"
},
{
"category": "external",
"summary": "1907746",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1907746"
},
{
"category": "external",
"summary": "1918207",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1918207"
},
{
"category": "external",
"summary": "1927395",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1927395"
},
{
"category": "external",
"summary": "1928607",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1928607"
},
{
"category": "external",
"summary": "1940845",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1940845"
},
{
"category": "external",
"summary": "1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "external",
"summary": "1942040",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1942040"
},
{
"category": "external",
"summary": "1942498",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1942498"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1189.json"
}
],
"title": "Red Hat Security Advisory: Red Hat Virtualization security, bug fix, and enhancement update",
"tracking": {
"current_release_date": "2026-05-14T22:31:06+00:00",
"generator": {
"date": "2026-05-14T22:31:06+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.0"
}
},
"id": "RHSA-2021:1189",
"initial_release_date": "2021-04-14T11:42:19+00:00",
"revision_history": [
{
"date": "2021-04-14T11:42:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-04-14T11:42:19+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-14T22:31:06+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product": {
"name": "RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhev_hypervisor:4.4::el8"
}
}
},
{
"category": "product_name",
"name": "Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product": {
"name": "Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhev_hypervisor:4.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat Virtualization"
},
{
"branches": [
{
"category": "product_version",
"name": "scap-security-guide-0:0.1.50-1.el8ev.src",
"product": {
"name": "scap-security-guide-0:0.1.50-1.el8ev.src",
"product_id": "scap-security-guide-0:0.1.50-1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/scap-security-guide@0.1.50-1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "zip-0:3.0-23.el8.src",
"product": {
"name": "zip-0:3.0-23.el8.src",
"product_id": "zip-0:3.0-23.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/zip@3.0-23.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "gcc-0:8.3.1-5.1.el8.src",
"product": {
"name": "gcc-0:8.3.1-5.1.el8.src",
"product_id": "gcc-0:8.3.1-5.1.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gcc@8.3.1-5.1.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "make-1:4.2.1-10.el8.src",
"product": {
"name": "make-1:4.2.1-10.el8.src",
"product_id": "make-1:4.2.1-10.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/make@4.2.1-10.el8?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "dyninst-0:10.1.0-4.el8.src",
"product": {
"name": "dyninst-0:10.1.0-4.el8.src",
"product_id": "dyninst-0:10.1.0-4.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dyninst@10.1.0-4.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "isl-0:0.16.1-6.el8.src",
"product": {
"name": "isl-0:0.16.1-6.el8.src",
"product_id": "isl-0:0.16.1-6.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/isl@0.16.1-6.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "libmpc-0:1.0.2-9.el8.src",
"product": {
"name": "libmpc-0:1.0.2-9.el8.src",
"product_id": "libmpc-0:1.0.2-9.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libmpc@1.0.2-9.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "libxcrypt-0:4.1.1-4.el8.src",
"product": {
"name": "libxcrypt-0:4.1.1-4.el8.src",
"product_id": "libxcrypt-0:4.1.1-4.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libxcrypt@4.1.1-4.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "boost-0:1.66.0-10.el8.src",
"product": {
"name": "boost-0:1.66.0-10.el8.src",
"product_id": "boost-0:1.66.0-10.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost@1.66.0-10.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "tbb-0:2018.2-9.el8.src",
"product": {
"name": "tbb-0:2018.2-9.el8.src",
"product_id": "tbb-0:2018.2-9.el8.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tbb@2018.2-9.el8?arch=src"
}
}
},
{
"category": "product_version",
"name": "imgbased-0:1.2.18-0.1.el8ev.src",
"product": {
"name": "imgbased-0:1.2.18-0.1.el8ev.src",
"product_id": "imgbased-0:1.2.18-0.1.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/imgbased@1.2.18-0.1.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "redhat-release-virtualization-host-0:4.4.5-4.el8ev.src",
"product": {
"name": "redhat-release-virtualization-host-0:4.4.5-4.el8ev.src",
"product_id": "redhat-release-virtualization-host-0:4.4.5-4.el8ev.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-release-virtualization-host@4.4.5-4.el8ev?arch=src"
}
}
},
{
"category": "product_version",
"name": "redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src",
"product": {
"name": "redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src",
"product_id": "redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-virtualization-host@4.4.5-20210330.0.el8_3?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch",
"product": {
"name": "scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch",
"product_id": "scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/scap-security-guide-rhv@0.1.50-1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "imgbased-0:1.2.18-0.1.el8ev.noarch",
"product": {
"name": "imgbased-0:1.2.18-0.1.el8ev.noarch",
"product_id": "imgbased-0:1.2.18-0.1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/imgbased@1.2.18-0.1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python3-imgbased-0:1.2.18-0.1.el8ev.noarch",
"product": {
"name": "python3-imgbased-0:1.2.18-0.1.el8ev.noarch",
"product_id": "python3-imgbased-0:1.2.18-0.1.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-imgbased@1.2.18-0.1.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch",
"product": {
"name": "redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch",
"product_id": "redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-virtualization-host-image-update-placeholder@4.4.5-4.el8ev?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch",
"product": {
"name": "redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch",
"product_id": "redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-virtualization-host-image-update@4.4.5-20210330.0.el8_3?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "vim-filesystem-2:8.0.1763-15.el8.noarch",
"product": {
"name": "vim-filesystem-2:8.0.1763-15.el8.noarch",
"product_id": "vim-filesystem-2:8.0.1763-15.el8.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/vim-filesystem@8.0.1763-15.el8?arch=noarch\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "zip-0:3.0-23.el8.x86_64",
"product": {
"name": "zip-0:3.0-23.el8.x86_64",
"product_id": "zip-0:3.0-23.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/zip@3.0-23.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "zip-debugsource-0:3.0-23.el8.x86_64",
"product": {
"name": "zip-debugsource-0:3.0-23.el8.x86_64",
"product_id": "zip-debugsource-0:3.0-23.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/zip-debugsource@3.0-23.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cpp-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "cpp-0:8.3.1-5.1.el8.x86_64",
"product_id": "cpp-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cpp@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "gcc-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "gcc-0:8.3.1-5.1.el8.x86_64",
"product_id": "gcc-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gcc@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libgcc-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libgcc-0:8.3.1-5.1.el8.x86_64",
"product_id": "libgcc-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libgcc@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libgomp-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libgomp-0:8.3.1-5.1.el8.x86_64",
"product_id": "libgomp-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libgomp@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "gcc-debugsource-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "gcc-debugsource-0:8.3.1-5.1.el8.x86_64",
"product_id": "gcc-debugsource-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gcc-debugsource@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "cpp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "cpp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "cpp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/cpp-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gcc-c%2B%2B-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "gcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "gcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "gcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gcc-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gcc-gdb-plugin-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gcc-gfortran-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gcc-offload-nvptx-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/gcc-plugin-devel-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libasan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libasan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "libasan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libasan-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libatomic-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libgcc-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libgfortran-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libgomp-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libgomp-offload-nvptx-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libitm-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libitm-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "libitm-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libitm-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/liblsan-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libquadmath-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libstdc%2B%2B-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libtsan-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product": {
"name": "libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_id": "libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libubsan-debuginfo@8.3.1-5.1.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "make-1:4.2.1-10.el8.x86_64",
"product": {
"name": "make-1:4.2.1-10.el8.x86_64",
"product_id": "make-1:4.2.1-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/make@4.2.1-10.el8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "make-debugsource-1:4.2.1-10.el8.x86_64",
"product": {
"name": "make-debugsource-1:4.2.1-10.el8.x86_64",
"product_id": "make-debugsource-1:4.2.1-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/make-debugsource@4.2.1-10.el8?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "dyninst-0:10.1.0-4.el8.x86_64",
"product": {
"name": "dyninst-0:10.1.0-4.el8.x86_64",
"product_id": "dyninst-0:10.1.0-4.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dyninst@10.1.0-4.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dyninst-debugsource-0:10.1.0-4.el8.x86_64",
"product": {
"name": "dyninst-debugsource-0:10.1.0-4.el8.x86_64",
"product_id": "dyninst-debugsource-0:10.1.0-4.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dyninst-debugsource@10.1.0-4.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dyninst-debuginfo-0:10.1.0-4.el8.x86_64",
"product": {
"name": "dyninst-debuginfo-0:10.1.0-4.el8.x86_64",
"product_id": "dyninst-debuginfo-0:10.1.0-4.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dyninst-debuginfo@10.1.0-4.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64",
"product": {
"name": "dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64",
"product_id": "dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dyninst-devel-debuginfo@10.1.0-4.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64",
"product": {
"name": "dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64",
"product_id": "dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/dyninst-testsuite-debuginfo@10.1.0-4.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glibc-devel-0:2.28-127.el8_3.2.x86_64",
"product": {
"name": "glibc-devel-0:2.28-127.el8_3.2.x86_64",
"product_id": "glibc-devel-0:2.28-127.el8_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glibc-devel@2.28-127.el8_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glibc-headers-0:2.28-127.el8_3.2.x86_64",
"product": {
"name": "glibc-headers-0:2.28-127.el8_3.2.x86_64",
"product_id": "glibc-headers-0:2.28-127.el8_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glibc-headers@2.28-127.el8_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glibc-debuginfo-0:2.28-127.el8_3.2.x86_64",
"product": {
"name": "glibc-debuginfo-0:2.28-127.el8_3.2.x86_64",
"product_id": "glibc-debuginfo-0:2.28-127.el8_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glibc-debuginfo@2.28-127.el8_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64",
"product": {
"name": "glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64",
"product_id": "glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/glibc-debuginfo-common@2.28-127.el8_3.2?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "isl-0:0.16.1-6.el8.x86_64",
"product": {
"name": "isl-0:0.16.1-6.el8.x86_64",
"product_id": "isl-0:0.16.1-6.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/isl@0.16.1-6.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "isl-debugsource-0:0.16.1-6.el8.x86_64",
"product": {
"name": "isl-debugsource-0:0.16.1-6.el8.x86_64",
"product_id": "isl-debugsource-0:0.16.1-6.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/isl-debugsource@0.16.1-6.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libmpc-0:1.0.2-9.el8.x86_64",
"product": {
"name": "libmpc-0:1.0.2-9.el8.x86_64",
"product_id": "libmpc-0:1.0.2-9.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libmpc@1.0.2-9.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libmpc-debugsource-0:1.0.2-9.el8.x86_64",
"product": {
"name": "libmpc-debugsource-0:1.0.2-9.el8.x86_64",
"product_id": "libmpc-debugsource-0:1.0.2-9.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libmpc-debugsource@1.0.2-9.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"product": {
"name": "compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"product_id": "compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/compat-libmpc-debuginfo@1.0.2-9.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"product": {
"name": "libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"product_id": "libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libmpc-debuginfo@1.0.2-9.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libxcrypt-devel-0:4.1.1-4.el8.x86_64",
"product": {
"name": "libxcrypt-devel-0:4.1.1-4.el8.x86_64",
"product_id": "libxcrypt-devel-0:4.1.1-4.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libxcrypt-devel@4.1.1-4.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "libxcrypt-debugsource-0:4.1.1-4.el8.x86_64",
"product": {
"name": "libxcrypt-debugsource-0:4.1.1-4.el8.x86_64",
"product_id": "libxcrypt-debugsource-0:4.1.1-4.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/libxcrypt-debugsource@4.1.1-4.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-date-time-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-date-time-0:1.66.0-10.el8.x86_64",
"product_id": "boost-date-time-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-date-time@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-filesystem-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-filesystem-0:1.66.0-10.el8.x86_64",
"product_id": "boost-filesystem-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-filesystem@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-system-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-system-0:1.66.0-10.el8.x86_64",
"product_id": "boost-system-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-system@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-timer-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-timer-0:1.66.0-10.el8.x86_64",
"product_id": "boost-timer-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-timer@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-debugsource-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-debugsource-0:1.66.0-10.el8.x86_64",
"product_id": "boost-debugsource-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-debugsource@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-atomic-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-chrono-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-container-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-container-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-container-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-container-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-context-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-context-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-context-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-context-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-coroutine-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-date-time-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-doctools-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-fiber-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-filesystem-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-graph-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-graph-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-graph-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-graph-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-graph-mpich-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-graph-openmpi-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-iostreams-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-locale-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-locale-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-locale-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-locale-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-log-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-log-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-log-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-log-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-math-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-math-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-math-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-math-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-mpich-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-mpich-python3-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-numpy3-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-openmpi-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-openmpi-python3-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-program-options-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-python3-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-random-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-random-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-random-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-random-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-regex-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-regex-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-regex-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-regex-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-serialization-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-signals-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-signals-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-signals-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-signals-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-stacktrace-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-system-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-system-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-system-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-system-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-test-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-test-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-test-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-test-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-thread-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-thread-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-thread-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-thread-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-timer-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-timer-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-timer-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-timer-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-type_erasure-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "boost-wave-debuginfo-0:1.66.0-10.el8.x86_64",
"product": {
"name": "boost-wave-debuginfo-0:1.66.0-10.el8.x86_64",
"product_id": "boost-wave-debuginfo-0:1.66.0-10.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/boost-wave-debuginfo@1.66.0-10.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tbb-0:2018.2-9.el8.x86_64",
"product": {
"name": "tbb-0:2018.2-9.el8.x86_64",
"product_id": "tbb-0:2018.2-9.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tbb@2018.2-9.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tbb-debugsource-0:2018.2-9.el8.x86_64",
"product": {
"name": "tbb-debugsource-0:2018.2-9.el8.x86_64",
"product_id": "tbb-debugsource-0:2018.2-9.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tbb-debugsource@2018.2-9.el8?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64",
"product": {
"name": "redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64",
"product_id": "redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/redhat-release-virtualization-host@4.4.5-4.el8ev?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64",
"product": {
"name": "kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64",
"product_id": "kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-devel@4.18.0-240.22.1.el8_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-0:4.18.0-240.22.1.el8_3.x86_64",
"product": {
"name": "perf-0:4.18.0-240.22.1.el8_3.x86_64",
"product_id": "perf-0:4.18.0-240.22.1.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf@4.18.0-240.22.1.el8_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product": {
"name": "bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product_id": "bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/bpftool-debuginfo@4.18.0-240.22.1.el8_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product": {
"name": "kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product_id": "kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debug-debuginfo@4.18.0-240.22.1.el8_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product": {
"name": "kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product_id": "kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo@4.18.0-240.22.1.el8_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64",
"product": {
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64",
"product_id": "kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-debuginfo-common-x86_64@4.18.0-240.22.1.el8_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product": {
"name": "kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product_id": "kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/kernel-tools-debuginfo@4.18.0-240.22.1.el8_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product": {
"name": "perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product_id": "perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/perf-debuginfo@4.18.0-240.22.1.el8_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product": {
"name": "python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product_id": "python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python3-perf-debuginfo@4.18.0-240.22.1.el8_3?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "vim-common-2:8.0.1763-15.el8.x86_64",
"product": {
"name": "vim-common-2:8.0.1763-15.el8.x86_64",
"product_id": "vim-common-2:8.0.1763-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/vim-common@8.0.1763-15.el8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "vim-enhanced-2:8.0.1763-15.el8.x86_64",
"product": {
"name": "vim-enhanced-2:8.0.1763-15.el8.x86_64",
"product_id": "vim-enhanced-2:8.0.1763-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/vim-enhanced@8.0.1763-15.el8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "vim-debugsource-2:8.0.1763-15.el8.x86_64",
"product": {
"name": "vim-debugsource-2:8.0.1763-15.el8.x86_64",
"product_id": "vim-debugsource-2:8.0.1763-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/vim-debugsource@8.0.1763-15.el8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64",
"product": {
"name": "vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64",
"product_id": "vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/vim-X11-debuginfo@8.0.1763-15.el8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "vim-common-debuginfo-2:8.0.1763-15.el8.x86_64",
"product": {
"name": "vim-common-debuginfo-2:8.0.1763-15.el8.x86_64",
"product_id": "vim-common-debuginfo-2:8.0.1763-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/vim-common-debuginfo@8.0.1763-15.el8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "vim-debuginfo-2:8.0.1763-15.el8.x86_64",
"product": {
"name": "vim-debuginfo-2:8.0.1763-15.el8.x86_64",
"product_id": "vim-debuginfo-2:8.0.1763-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/vim-debuginfo@8.0.1763-15.el8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64",
"product": {
"name": "vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64",
"product_id": "vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/vim-enhanced-debuginfo@8.0.1763-15.el8?arch=x86_64\u0026epoch=2"
}
}
},
{
"category": "product_version",
"name": "vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64",
"product": {
"name": "vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64",
"product_id": "vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/vim-minimal-debuginfo@8.0.1763-15.el8?arch=x86_64\u0026epoch=2"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-0:1.66.0-10.el8.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-0:1.66.0-10.el8.src"
},
"product_reference": "boost-0:1.66.0-10.el8.src",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-container-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-container-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-container-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-context-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-context-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-context-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-date-time-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-date-time-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-date-time-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-debugsource-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-debugsource-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-debugsource-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-filesystem-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-filesystem-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-filesystem-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-graph-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-graph-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-graph-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-locale-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-locale-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-locale-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-log-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-log-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-log-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-math-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-math-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-math-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-python3-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-python3-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-random-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-random-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-random-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-regex-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-regex-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-regex-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-signals-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-signals-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-signals-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-system-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-system-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-system-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-system-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-system-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-system-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-test-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-test-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-test-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-thread-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-thread-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-thread-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-timer-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-timer-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-timer-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-timer-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-timer-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-timer-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "boost-wave-debuginfo-0:1.66.0-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:boost-wave-debuginfo-0:1.66.0-10.el8.x86_64"
},
"product_reference": "boost-wave-debuginfo-0:1.66.0-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64"
},
"product_reference": "bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64"
},
"product_reference": "compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cpp-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:cpp-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "cpp-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "cpp-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:cpp-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "cpp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dyninst-0:10.1.0-4.el8.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.src"
},
"product_reference": "dyninst-0:10.1.0-4.el8.src",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dyninst-0:10.1.0-4.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.x86_64"
},
"product_reference": "dyninst-0:10.1.0-4.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dyninst-debuginfo-0:10.1.0-4.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:dyninst-debuginfo-0:10.1.0-4.el8.x86_64"
},
"product_reference": "dyninst-debuginfo-0:10.1.0-4.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dyninst-debugsource-0:10.1.0-4.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:dyninst-debugsource-0:10.1.0-4.el8.x86_64"
},
"product_reference": "dyninst-debugsource-0:10.1.0-4.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64"
},
"product_reference": "dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64"
},
"product_reference": "dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc-0:8.3.1-5.1.el8.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.src"
},
"product_reference": "gcc-0:8.3.1-5.1.el8.src",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "gcc-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:gcc-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "gcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc-debugsource-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:gcc-debugsource-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "gcc-debugsource-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glibc-debuginfo-0:2.28-127.el8_3.2.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:glibc-debuginfo-0:2.28-127.el8_3.2.x86_64"
},
"product_reference": "glibc-debuginfo-0:2.28-127.el8_3.2.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64"
},
"product_reference": "glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glibc-devel-0:2.28-127.el8_3.2.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:glibc-devel-0:2.28-127.el8_3.2.x86_64"
},
"product_reference": "glibc-devel-0:2.28-127.el8_3.2.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "glibc-headers-0:2.28-127.el8_3.2.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:glibc-headers-0:2.28-127.el8_3.2.x86_64"
},
"product_reference": "glibc-headers-0:2.28-127.el8_3.2.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "isl-0:0.16.1-6.el8.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.src"
},
"product_reference": "isl-0:0.16.1-6.el8.src",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "isl-0:0.16.1-6.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.x86_64"
},
"product_reference": "isl-0:0.16.1-6.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "isl-debugsource-0:0.16.1-6.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:isl-debugsource-0:0.16.1-6.el8.x86_64"
},
"product_reference": "isl-debugsource-0:0.16.1-6.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64"
},
"product_reference": "kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64"
},
"product_reference": "kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64"
},
"product_reference": "kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64"
},
"product_reference": "kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64"
},
"product_reference": "kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libasan-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libasan-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libasan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgcc-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libgcc-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libgcc-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgomp-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libgomp-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libgomp-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libitm-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libitm-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libitm-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libmpc-0:1.0.2-9.el8.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.src"
},
"product_reference": "libmpc-0:1.0.2-9.el8.src",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libmpc-0:1.0.2-9.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.x86_64"
},
"product_reference": "libmpc-0:1.0.2-9.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libmpc-debuginfo-0:1.0.2-9.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libmpc-debuginfo-0:1.0.2-9.el8.x86_64"
},
"product_reference": "libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libmpc-debugsource-0:1.0.2-9.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libmpc-debugsource-0:1.0.2-9.el8.x86_64"
},
"product_reference": "libmpc-debugsource-0:1.0.2-9.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64"
},
"product_reference": "libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libxcrypt-0:4.1.1-4.el8.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libxcrypt-0:4.1.1-4.el8.src"
},
"product_reference": "libxcrypt-0:4.1.1-4.el8.src",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libxcrypt-debugsource-0:4.1.1-4.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libxcrypt-debugsource-0:4.1.1-4.el8.x86_64"
},
"product_reference": "libxcrypt-debugsource-0:4.1.1-4.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libxcrypt-devel-0:4.1.1-4.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:libxcrypt-devel-0:4.1.1-4.el8.x86_64"
},
"product_reference": "libxcrypt-devel-0:4.1.1-4.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "make-1:4.2.1-10.el8.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.src"
},
"product_reference": "make-1:4.2.1-10.el8.src",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "make-1:4.2.1-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.x86_64"
},
"product_reference": "make-1:4.2.1-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "make-debugsource-1:4.2.1-10.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:make-debugsource-1:4.2.1-10.el8.x86_64"
},
"product_reference": "make-debugsource-1:4.2.1-10.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-0:4.18.0-240.22.1.el8_3.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:perf-0:4.18.0-240.22.1.el8_3.x86_64"
},
"product_reference": "perf-0:4.18.0-240.22.1.el8_3.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64"
},
"product_reference": "perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64"
},
"product_reference": "python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src"
},
"product_reference": "redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch"
},
"product_reference": "redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tbb-0:2018.2-9.el8.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.src"
},
"product_reference": "tbb-0:2018.2-9.el8.src",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tbb-0:2018.2-9.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.x86_64"
},
"product_reference": "tbb-0:2018.2-9.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tbb-debugsource-0:2018.2-9.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:tbb-debugsource-0:2018.2-9.el8.x86_64"
},
"product_reference": "tbb-debugsource-0:2018.2-9.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64"
},
"product_reference": "vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-common-2:8.0.1763-15.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:vim-common-2:8.0.1763-15.el8.x86_64"
},
"product_reference": "vim-common-2:8.0.1763-15.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-common-debuginfo-2:8.0.1763-15.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:vim-common-debuginfo-2:8.0.1763-15.el8.x86_64"
},
"product_reference": "vim-common-debuginfo-2:8.0.1763-15.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-debuginfo-2:8.0.1763-15.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:vim-debuginfo-2:8.0.1763-15.el8.x86_64"
},
"product_reference": "vim-debuginfo-2:8.0.1763-15.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-debugsource-2:8.0.1763-15.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:vim-debugsource-2:8.0.1763-15.el8.x86_64"
},
"product_reference": "vim-debugsource-2:8.0.1763-15.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-enhanced-2:8.0.1763-15.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:vim-enhanced-2:8.0.1763-15.el8.x86_64"
},
"product_reference": "vim-enhanced-2:8.0.1763-15.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64"
},
"product_reference": "vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-filesystem-2:8.0.1763-15.el8.noarch as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:vim-filesystem-2:8.0.1763-15.el8.noarch"
},
"product_reference": "vim-filesystem-2:8.0.1763-15.el8.noarch",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64"
},
"product_reference": "vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "zip-0:3.0-23.el8.src as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.src"
},
"product_reference": "zip-0:3.0-23.el8.src",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "zip-0:3.0-23.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.x86_64"
},
"product_reference": "zip-0:3.0-23.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "zip-debugsource-0:3.0-23.el8.x86_64 as a component of Red Hat Virtualization 4 Hypervisor for RHEL 8",
"product_id": "8Base-RHV-Hypervisor-4:zip-debugsource-0:3.0-23.el8.x86_64"
},
"product_reference": "zip-debugsource-0:3.0-23.el8.x86_64",
"relates_to_product_reference": "8Base-RHV-Hypervisor-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "imgbased-0:1.2.18-0.1.el8ev.noarch as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.noarch"
},
"product_reference": "imgbased-0:1.2.18-0.1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "imgbased-0:1.2.18-0.1.el8ev.src as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.src"
},
"product_reference": "imgbased-0:1.2.18-0.1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python3-imgbased-0:1.2.18-0.1.el8ev.noarch as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.18-0.1.el8ev.noarch"
},
"product_reference": "python3-imgbased-0:1.2.18-0.1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-release-virtualization-host-0:4.4.5-4.el8ev.src as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.src"
},
"product_reference": "redhat-release-virtualization-host-0:4.4.5-4.el8ev.src",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64 as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64"
},
"product_reference": "redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch"
},
"product_reference": "redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "scap-security-guide-0:0.1.50-1.el8ev.src as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:scap-security-guide-0:0.1.50-1.el8ev.src"
},
"product_reference": "scap-security-guide-0:0.1.50-1.el8ev.src",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch as a component of RHEL 8-based RHEV-H for RHEV 4 (build requirements)",
"product_id": "8Base-RHV-HypervisorBuild-4:scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch"
},
"product_reference": "scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch",
"relates_to_product_reference": "8Base-RHV-HypervisorBuild-4"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Nokia"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3449",
"discovery_date": "2021-03-22T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHV-Hypervisor-4:boost-0:1.66.0-10.el8.src",
"8Base-RHV-Hypervisor-4:boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-container-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-context-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debugsource-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-locale-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-log-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-math-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-random-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-regex-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-signals-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-test-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-thread-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-wave-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.src",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debugsource-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.src",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debugsource-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-devel-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-headers-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.src",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:isl-debugsource-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:libasan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libitm-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.src",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debugsource-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-0:4.1.1-4.el8.src",
"8Base-RHV-Hypervisor-4:libxcrypt-debugsource-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-devel-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.src",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-debugsource-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:perf-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.src",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:tbb-debugsource-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debugsource-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-filesystem-2:8.0.1763-15.el8.noarch",
"8Base-RHV-Hypervisor-4:vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.src",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-debugsource-0:3.0-23.el8.x86_64",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-0:0.1.50-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941554"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: NULL pointer dereference in signature_algorithms processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw only affects OpenSSL 1.1.1, older versions are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch"
],
"known_not_affected": [
"8Base-RHV-Hypervisor-4:boost-0:1.66.0-10.el8.src",
"8Base-RHV-Hypervisor-4:boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-container-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-context-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debugsource-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-locale-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-log-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-math-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-random-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-regex-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-signals-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-test-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-thread-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-wave-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.src",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debugsource-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.src",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debugsource-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-devel-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-headers-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.src",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:isl-debugsource-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:libasan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libitm-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.src",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debugsource-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-0:4.1.1-4.el8.src",
"8Base-RHV-Hypervisor-4:libxcrypt-debugsource-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-devel-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.src",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-debugsource-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:perf-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.src",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:tbb-debugsource-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debugsource-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-filesystem-2:8.0.1763-15.el8.noarch",
"8Base-RHV-Hypervisor-4:vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.src",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-debugsource-0:3.0-23.el8.x86_64",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-0:0.1.50-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "RHBZ#1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3449",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T11:42:19+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891\n\nThe system must be rebooted for this update to take effect. For the update to take effect, all services linked to the glibc library must be restarted, or the system rebooted.",
"product_ids": [
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1189"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by disabling TLS renegotiation on servers compiled with OpenSSL. It is enabled by default, but can be disabled for servers which do not require it and can be used to mitigate this flaw. Versions of httpd package shipped with Red Hat Enterprise Linux 8 have TLS renegotiation disabled by default.",
"product_ids": [
"8Base-RHV-Hypervisor-4:boost-0:1.66.0-10.el8.src",
"8Base-RHV-Hypervisor-4:boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-container-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-context-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debugsource-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-locale-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-log-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-math-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-random-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-regex-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-signals-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-test-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-thread-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-wave-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.src",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debugsource-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.src",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debugsource-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-devel-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-headers-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.src",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:isl-debugsource-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:libasan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libitm-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.src",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debugsource-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-0:4.1.1-4.el8.src",
"8Base-RHV-Hypervisor-4:libxcrypt-debugsource-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-devel-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.src",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-debugsource-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:perf-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.src",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:tbb-debugsource-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debugsource-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-filesystem-2:8.0.1763-15.el8.noarch",
"8Base-RHV-Hypervisor-4:vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.src",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-debugsource-0:3.0-23.el8.x86_64",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-0:0.1.50-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHV-Hypervisor-4:boost-0:1.66.0-10.el8.src",
"8Base-RHV-Hypervisor-4:boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-container-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-context-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debugsource-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-locale-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-log-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-math-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-random-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-regex-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-signals-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-test-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-thread-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-wave-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.src",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debugsource-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.src",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debugsource-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-devel-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-headers-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.src",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:isl-debugsource-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:libasan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libitm-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.src",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debugsource-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-0:4.1.1-4.el8.src",
"8Base-RHV-Hypervisor-4:libxcrypt-debugsource-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-devel-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.src",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-debugsource-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:perf-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.src",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:tbb-debugsource-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debugsource-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-filesystem-2:8.0.1763-15.el8.noarch",
"8Base-RHV-Hypervisor-4:vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.src",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-debugsource-0:3.0-23.el8.x86_64",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-0:0.1.50-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: NULL pointer dereference in signature_algorithms processing"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL Project"
]
},
{
"names": [
"Benjamin Kaduk"
],
"summary": "Acknowledged by upstream."
},
{
"names": [
"Xiang Ding and others"
],
"organization": "Akamai",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3450",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2021-03-22T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHV-Hypervisor-4:boost-0:1.66.0-10.el8.src",
"8Base-RHV-Hypervisor-4:boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-container-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-context-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debugsource-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-locale-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-log-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-math-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-random-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-regex-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-signals-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-test-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-thread-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-wave-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.src",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debugsource-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.src",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debugsource-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-devel-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-headers-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.src",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:isl-debugsource-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:libasan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libitm-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.src",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debugsource-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-0:4.1.1-4.el8.src",
"8Base-RHV-Hypervisor-4:libxcrypt-debugsource-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-devel-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.src",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-debugsource-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:perf-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.src",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:tbb-debugsource-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debugsource-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-filesystem-2:8.0.1763-15.el8.noarch",
"8Base-RHV-Hypervisor-4:vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.src",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-debugsource-0:3.0-23.el8.x86_64",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-0:0.1.50-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941547"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw affects openssl 1.1.1h and above only, older versions are not affected by this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch"
],
"known_not_affected": [
"8Base-RHV-Hypervisor-4:boost-0:1.66.0-10.el8.src",
"8Base-RHV-Hypervisor-4:boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-container-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-context-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debugsource-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-locale-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-log-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-math-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-random-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-regex-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-signals-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-test-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-thread-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-wave-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.src",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debugsource-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.src",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debugsource-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-devel-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-headers-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.src",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:isl-debugsource-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:libasan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libitm-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.src",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debugsource-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-0:4.1.1-4.el8.src",
"8Base-RHV-Hypervisor-4:libxcrypt-debugsource-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-devel-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.src",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-debugsource-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:perf-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.src",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:tbb-debugsource-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debugsource-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-filesystem-2:8.0.1763-15.el8.noarch",
"8Base-RHV-Hypervisor-4:vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.src",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-debugsource-0:3.0-23.el8.x86_64",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-0:0.1.50-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "RHBZ#1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3450",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T11:42:19+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/2974891\n\nThe system must be rebooted for this update to take effect. For the update to take effect, all services linked to the glibc library must be restarted, or the system rebooted.",
"product_ids": [
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1189"
},
{
"category": "workaround",
"details": "The following conditions have to be met for an application compiled with OpenSSL to be vulnerable:\n\n- the CA trusted by the system must issue or have issued certificates that don\u0027t include basic Key Usage extension.\n- the CA certificates must not have path length constraint set to a value that would limit the certificate chain to just the subscriber certificates (i.e. CA certificate just above the subscriber cert must not have 0 as the path length constraint, and any CA above it must not have it increase by more than 1 for every level in the hierarchy)\n- the attacker needs to have access to such subscriber certificate (without basic Key Usage and linking up to CAs without path length constraints or not effectively constraining certs issued by this certificate)\n- the application under attack must use the X509_V_FLAG_X509_STRICT flag and must not set purpose for the certificate verification\n\nif any of the above conditions are not met then the application compiled with OpenSSL is not vulnerable to the CVE.",
"product_ids": [
"8Base-RHV-Hypervisor-4:boost-0:1.66.0-10.el8.src",
"8Base-RHV-Hypervisor-4:boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-container-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-context-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debugsource-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-locale-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-log-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-math-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-random-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-regex-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-signals-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-test-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-thread-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-wave-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.src",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debugsource-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.src",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debugsource-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-devel-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-headers-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.src",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:isl-debugsource-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:libasan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libitm-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.src",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debugsource-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-0:4.1.1-4.el8.src",
"8Base-RHV-Hypervisor-4:libxcrypt-debugsource-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-devel-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.src",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-debugsource-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:perf-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.src",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:tbb-debugsource-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debugsource-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-filesystem-2:8.0.1763-15.el8.noarch",
"8Base-RHV-Hypervisor-4:vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.src",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-debugsource-0:3.0-23.el8.x86_64",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-0:0.1.50-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"8Base-RHV-Hypervisor-4:boost-0:1.66.0-10.el8.src",
"8Base-RHV-Hypervisor-4:boost-atomic-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-chrono-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-container-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-context-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-coroutine-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-date-time-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-debugsource-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-doctools-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-fiber-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-filesystem-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-graph-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-iostreams-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-locale-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-log-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-math-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-mpich-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-numpy3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-openmpi-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-program-options-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-python3-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-random-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-regex-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-serialization-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-signals-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-stacktrace-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-system-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-test-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-thread-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-timer-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-type_erasure-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:boost-wave-debuginfo-0:1.66.0-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:bpftool-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:compat-libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:cpp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.src",
"8Base-RHV-Hypervisor-4:dyninst-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-debugsource-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-devel-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:dyninst-testsuite-debuginfo-0:10.1.0-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.src",
"8Base-RHV-Hypervisor-4:gcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-c++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-debugsource-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gdb-plugin-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-gfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:gcc-plugin-devel-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-debuginfo-common-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-devel-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:glibc-headers-0:2.28-127.el8_3.2.x86_64",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.src",
"8Base-RHV-Hypervisor-4:isl-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:isl-debugsource-0:0.16.1-6.el8.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debug-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-debuginfo-common-x86_64-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-devel-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:kernel-tools-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:libasan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libatomic-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgcc-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgfortran-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libgomp-offload-nvptx-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libitm-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:liblsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.src",
"8Base-RHV-Hypervisor-4:libmpc-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debuginfo-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libmpc-debugsource-0:1.0.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:libquadmath-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libstdc++-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libtsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libubsan-debuginfo-0:8.3.1-5.1.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-0:4.1.1-4.el8.src",
"8Base-RHV-Hypervisor-4:libxcrypt-debugsource-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:libxcrypt-devel-0:4.1.1-4.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.src",
"8Base-RHV-Hypervisor-4:make-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:make-debugsource-1:4.2.1-10.el8.x86_64",
"8Base-RHV-Hypervisor-4:perf-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:python3-perf-debuginfo-0:4.18.0-240.22.1.el8_3.x86_64",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-0:4.4.5-20210330.0.el8_3.src",
"8Base-RHV-Hypervisor-4:redhat-virtualization-host-image-update-0:4.4.5-20210330.0.el8_3.noarch",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.src",
"8Base-RHV-Hypervisor-4:tbb-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:tbb-debugsource-0:2018.2-9.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-X11-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-common-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-debugsource-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-enhanced-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:vim-filesystem-2:8.0.1763-15.el8.noarch",
"8Base-RHV-Hypervisor-4:vim-minimal-debuginfo-2:8.0.1763-15.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.src",
"8Base-RHV-Hypervisor-4:zip-0:3.0-23.el8.x86_64",
"8Base-RHV-Hypervisor-4:zip-debugsource-0:3.0-23.el8.x86_64",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:imgbased-0:1.2.18-0.1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:python3-imgbased-0:1.2.18-0.1.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.src",
"8Base-RHV-HypervisorBuild-4:redhat-release-virtualization-host-0:4.4.5-4.el8ev.x86_64",
"8Base-RHV-HypervisorBuild-4:redhat-virtualization-host-image-update-placeholder-0:4.4.5-4.el8ev.noarch",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-0:0.1.50-1.el8ev.src",
"8Base-RHV-HypervisorBuild-4:scap-security-guide-rhv-0:0.1.50-1.el8ev.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT"
}
]
}
RHSA-2021:1195
Vulnerability from csaf_redhat - Published: 2021-04-14 14:48 - Updated: 2026-05-14 22:31Summary
Red Hat Security Advisory: Red Hat JBoss Web Server 5.4.2 Security Update
Severity
Important
Notes
Topic: Updated Red Hat JBoss Web Server 5.4.2 packages are now available for Red Hat Enterprise Linux 7, and Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector (mod_cluster), the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library.
This release of Red Hat JBoss Web Server 5.4.2 serves as a replacement for Red Hat JBoss Web Server 5.4.1, and includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes, linked to in the References.
Security Fix(es):
* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)
* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.
5.9 (Medium)
Affected products
Fixed
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.
7.4 (High)
Affected products
Fixed
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 8Base-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
14 references
Acknowledgments
the OpenSSL project
Nokia
the OpenSSL Project
Benjamin Kaduk
Akamai
Xiang Ding and others
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated Red Hat JBoss Web Server 5.4.2 packages are now available for Red Hat Enterprise Linux 7, and Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector (mod_cluster), the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library.\n\nThis release of Red Hat JBoss Web Server 5.4.2 serves as a replacement for Red Hat JBoss Web Server 5.4.1, and includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes, linked to in the References.\n\nSecurity Fix(es):\n\n* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)\n* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:1195",
"url": "https://access.redhat.com/errata/RHSA-2021:1195"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1195.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Web Server 5.4.2 Security Update",
"tracking": {
"current_release_date": "2026-05-14T22:31:05+00:00",
"generator": {
"date": "2026-05-14T22:31:05+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.0"
}
},
"id": "RHSA-2021:1195",
"initial_release_date": "2021-04-14T14:48:19+00:00",
"revision_history": [
{
"date": "2021-04-14T14:48:19+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-04-14T14:48:19+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-14T22:31:05+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Web Server 5.4 for RHEL 7 Server",
"product": {
"name": "Red Hat JBoss Web Server 5.4 for RHEL 7 Server",
"product_id": "7Server-JWS-5.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:5.4::el7"
}
}
},
{
"category": "product_name",
"name": "Red Hat JBoss Web Server 5.4 for RHEL 8",
"product": {
"name": "Red Hat JBoss Web Server 5.4 for RHEL 8",
"product_id": "8Base-JWS-5.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:5.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Web Server"
},
{
"branches": [
{
"category": "product_version",
"name": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src",
"product": {
"name": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src",
"product_id": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jws5-tomcat-native@1.2.25-4.redhat_4.el7jws?arch=src"
}
}
},
{
"category": "product_version",
"name": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src",
"product": {
"name": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src",
"product_id": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jws5-tomcat-native@1.2.25-4.redhat_4.el8jws?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64",
"product": {
"name": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64",
"product_id": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jws5-tomcat-native@1.2.25-4.redhat_4.el7jws?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64",
"product": {
"name": "jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64",
"product_id": "jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jws5-tomcat-native-debuginfo@1.2.25-4.redhat_4.el7jws?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64",
"product": {
"name": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64",
"product_id": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jws5-tomcat-native@1.2.25-4.redhat_4.el8jws?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64",
"product": {
"name": "jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64",
"product_id": "jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jws5-tomcat-native-debuginfo@1.2.25-4.redhat_4.el8jws?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src as a component of Red Hat JBoss Web Server 5.4 for RHEL 7 Server",
"product_id": "7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src"
},
"product_reference": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src",
"relates_to_product_reference": "7Server-JWS-5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64 as a component of Red Hat JBoss Web Server 5.4 for RHEL 7 Server",
"product_id": "7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64"
},
"product_reference": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64",
"relates_to_product_reference": "7Server-JWS-5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64 as a component of Red Hat JBoss Web Server 5.4 for RHEL 7 Server",
"product_id": "7Server-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64"
},
"product_reference": "jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64",
"relates_to_product_reference": "7Server-JWS-5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src as a component of Red Hat JBoss Web Server 5.4 for RHEL 8",
"product_id": "8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src"
},
"product_reference": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src",
"relates_to_product_reference": "8Base-JWS-5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64 as a component of Red Hat JBoss Web Server 5.4 for RHEL 8",
"product_id": "8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64"
},
"product_reference": "jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64",
"relates_to_product_reference": "8Base-JWS-5.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64 as a component of Red Hat JBoss Web Server 5.4 for RHEL 8",
"product_id": "8Base-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64"
},
"product_reference": "jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64",
"relates_to_product_reference": "8Base-JWS-5.4"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Nokia"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3449",
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941554"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: NULL pointer dereference in signature_algorithms processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw only affects OpenSSL 1.1.1, older versions are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src",
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64",
"7Server-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "RHBZ#1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3449",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T14:48:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src",
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64",
"7Server-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1195"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by disabling TLS renegotiation on servers compiled with OpenSSL. It is enabled by default, but can be disabled for servers which do not require it and can be used to mitigate this flaw. Versions of httpd package shipped with Red Hat Enterprise Linux 8 have TLS renegotiation disabled by default.",
"product_ids": [
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src",
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64",
"7Server-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src",
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64",
"7Server-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: NULL pointer dereference in signature_algorithms processing"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL Project"
]
},
{
"names": [
"Benjamin Kaduk"
],
"summary": "Acknowledged by upstream."
},
{
"names": [
"Xiang Ding and others"
],
"organization": "Akamai",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3450",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941547"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw affects openssl 1.1.1h and above only, older versions are not affected by this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src",
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64",
"7Server-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "RHBZ#1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3450",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T14:48:19+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src",
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64",
"7Server-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1195"
},
{
"category": "workaround",
"details": "The following conditions have to be met for an application compiled with OpenSSL to be vulnerable:\n\n- the CA trusted by the system must issue or have issued certificates that don\u0027t include basic Key Usage extension.\n- the CA certificates must not have path length constraint set to a value that would limit the certificate chain to just the subscriber certificates (i.e. CA certificate just above the subscriber cert must not have 0 as the path length constraint, and any CA above it must not have it increase by more than 1 for every level in the hierarchy)\n- the attacker needs to have access to such subscriber certificate (without basic Key Usage and linking up to CAs without path length constraints or not effectively constraining certs issued by this certificate)\n- the application under attack must use the X509_V_FLAG_X509_STRICT flag and must not set purpose for the certificate verification\n\nif any of the above conditions are not met then the application compiled with OpenSSL is not vulnerable to the CVE.",
"product_ids": [
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src",
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64",
"7Server-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.src",
"7Server-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el7jws.x86_64",
"7Server-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el7jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.src",
"8Base-JWS-5.4:jws5-tomcat-native-0:1.2.25-4.redhat_4.el8jws.x86_64",
"8Base-JWS-5.4:jws5-tomcat-native-debuginfo-0:1.2.25-4.redhat_4.el8jws.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT"
}
]
}
RHSA-2021:1196
Vulnerability from csaf_redhat - Published: 2021-04-14 14:34 - Updated: 2026-05-14 22:31Summary
Red Hat Security Advisory: Red Hat JBoss Web Server 5.4.2 Security Update
Severity
Important
Notes
Topic: Red Hat JBoss Web Server 5.4.2 zip release is now available for Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8 and Windows.
Red Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector (mod_cluster), the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library.
This release of Red Hat JBoss Web Server 5.4.2 serves as a replacement for Red Hat JBoss Web Server 5.4.1, and includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes, linked to in the References.
Security Fix(es):
* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)
* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Web Server 5
Red Hat / Red Hat JBoss Web Server
|
cpe:/a:redhat:jboss_enterprise_web_server:5.4
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.
7.4 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Web Server 5
Red Hat / Red Hat JBoss Web Server
|
cpe:/a:redhat:jboss_enterprise_web_server:5.4
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
14 references
Acknowledgments
the OpenSSL project
Nokia
the OpenSSL Project
Benjamin Kaduk
Akamai
Xiang Ding and others
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat JBoss Web Server 5.4.2 zip release is now available for Red Hat Enterprise Linux 7, Red Hat Enterprise Linux 8 and Windows.\n\nRed Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache Tomcat Servlet container, JBoss HTTP Connector (mod_cluster), the PicketLink Vault extension for Apache Tomcat, and the Tomcat Native library.\n\nThis release of Red Hat JBoss Web Server 5.4.2 serves as a replacement for Red Hat JBoss Web Server 5.4.1, and includes bug fixes, enhancements and component upgrades, which are documented in the Release Notes, linked to in the References.\n\nSecurity Fix(es):\n\n* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)\n* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:1196",
"url": "https://access.redhat.com/errata/RHSA-2021:1196"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1196.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Web Server 5.4.2 Security Update",
"tracking": {
"current_release_date": "2026-05-14T22:31:06+00:00",
"generator": {
"date": "2026-05-14T22:31:06+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.0"
}
},
"id": "RHSA-2021:1196",
"initial_release_date": "2021-04-14T14:34:26+00:00",
"revision_history": [
{
"date": "2021-04-14T14:34:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-04-14T14:34:26+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-14T22:31:06+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Web Server 5",
"product": {
"name": "Red Hat JBoss Web Server 5",
"product_id": "Red Hat JBoss Web Server 5",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:5.4"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Web Server"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Nokia"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3449",
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941554"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: NULL pointer dereference in signature_algorithms processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw only affects OpenSSL 1.1.1, older versions are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Web Server 5"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "RHBZ#1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3449",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T14:34:26+00:00",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link for the update. You must be logged in to download the update.",
"product_ids": [
"Red Hat JBoss Web Server 5"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1196"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by disabling TLS renegotiation on servers compiled with OpenSSL. It is enabled by default, but can be disabled for servers which do not require it and can be used to mitigate this flaw. Versions of httpd package shipped with Red Hat Enterprise Linux 8 have TLS renegotiation disabled by default.",
"product_ids": [
"Red Hat JBoss Web Server 5"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat JBoss Web Server 5"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: NULL pointer dereference in signature_algorithms processing"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL Project"
]
},
{
"names": [
"Benjamin Kaduk"
],
"summary": "Acknowledged by upstream."
},
{
"names": [
"Xiang Ding and others"
],
"organization": "Akamai",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3450",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941547"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw affects openssl 1.1.1h and above only, older versions are not affected by this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Web Server 5"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "RHBZ#1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3450",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T14:34:26+00:00",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link for the update. You must be logged in to download the update.",
"product_ids": [
"Red Hat JBoss Web Server 5"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1196"
},
{
"category": "workaround",
"details": "The following conditions have to be met for an application compiled with OpenSSL to be vulnerable:\n\n- the CA trusted by the system must issue or have issued certificates that don\u0027t include basic Key Usage extension.\n- the CA certificates must not have path length constraint set to a value that would limit the certificate chain to just the subscriber certificates (i.e. CA certificate just above the subscriber cert must not have 0 as the path length constraint, and any CA above it must not have it increase by more than 1 for every level in the hierarchy)\n- the attacker needs to have access to such subscriber certificate (without basic Key Usage and linking up to CAs without path length constraints or not effectively constraining certs issued by this certificate)\n- the application under attack must use the X509_V_FLAG_X509_STRICT flag and must not set purpose for the certificate verification\n\nif any of the above conditions are not met then the application compiled with OpenSSL is not vulnerable to the CVE.",
"product_ids": [
"Red Hat JBoss Web Server 5"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat JBoss Web Server 5"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT"
}
]
}
RHSA-2021:1199
Vulnerability from csaf_redhat - Published: 2021-04-14 15:56 - Updated: 2026-05-14 22:31Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP7 security update
Severity
Important
Notes
Topic: Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: This release adds the new Apache HTTP Server 2.4.37 Service Pack 7 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.37 Service Pack 6 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security fix(es):
* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)
* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.
5.9 (Medium)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.
7.4 (High)
Affected products
Fixed
44 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
14 references
Acknowledgments
the OpenSSL project
Nokia
the OpenSSL Project
Benjamin Kaduk
Akamai
Xiang Ding and others
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Updated packages that provide Red Hat JBoss Core Services Pack Apache Server 2.4.37 and fix several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 7.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "This release adds the new Apache HTTP Server 2.4.37 Service Pack 7 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.37 Service Pack 6 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity fix(es):\n\n* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)\n* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:1199",
"url": "https://access.redhat.com/errata/RHSA-2021:1199"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1199.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP7 security update",
"tracking": {
"current_release_date": "2026-05-14T22:31:04+00:00",
"generator": {
"date": "2026-05-14T22:31:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.0"
}
},
"id": "RHSA-2021:1199",
"initial_release_date": "2021-04-14T15:56:54+00:00",
"revision_history": [
{
"date": "2021-04-14T15:56:54+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-04-14T15:56:54+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-14T22:31:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Core Services on RHEL 7 Server",
"product": {
"name": "Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_core_services:1::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Core Services"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src",
"product_id": "jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1g-6.jbcs.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src",
"product_id": "jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-pkcs11@0.4.10-20.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src",
"product_id": "jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-37.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src",
"product_id": "jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-chil@1.0.0-5.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src",
"product_id": "jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-70.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.0.8-33.jbcs.el7?arch=src\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_http2@1.15.7-14.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-60.GA.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk@1.2.48-13.redhat_1.jbcs.el7?arch=src"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.14-20.Final_redhat_2.jbcs.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl@1.1.1g-6.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-devel@1.1.1g-6.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-libs@1.1.1g-6.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-perl@1.1.1g-6.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-static@1.1.1g-6.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-debuginfo@1.1.1g-6.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-pkcs11@0.4.10-20.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-pkcs11-debuginfo@0.4.10-20.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2@1.39.2-37.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-devel@1.39.2-37.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-nghttp2-debuginfo@1.39.2-37.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-chil@1.0.0-5.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-openssl-chil-debuginfo@1.0.0-5.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd@2.4.37-70.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-devel@2.4.37-70.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-selinux@2.4.37-70.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-tools@2.4.37-70.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ldap@2.4.37-70.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_proxy_html@2.4.37-70.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_session@2.4.37-70.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_ssl@2.4.37-70.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-debuginfo@2.4.37-70.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_md@2.0.8-33.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_md-debuginfo@2.0.8-33.jbcs.el7?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_http2@1.15.7-14.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_http2-debuginfo@1.15.7-14.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security@2.9.2-60.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_security-debuginfo@2.9.2-60.GA.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-ap24@1.2.48-13.redhat_1.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-manual@1.2.48-13.redhat_1.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_jk-debuginfo@1.2.48-13.redhat_1.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native@1.3.14-20.Final_redhat_2.jbcs.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"product": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"product_id": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-mod_cluster-native-debuginfo@1.3.14-20.Final_redhat_2.jbcs.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch",
"product": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch",
"product_id": "jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/jbcs-httpd24-httpd-manual@2.4.37-70.jbcs.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch"
},
"product_reference": "jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src"
},
"product_reference": "jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64 as a component of Red Hat JBoss Core Services on RHEL 7 Server",
"product_id": "7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64"
},
"product_reference": "jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64",
"relates_to_product_reference": "7Server-JBCS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Nokia"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3449",
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941554"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: NULL pointer dereference in signature_algorithms processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw only affects OpenSSL 1.1.1, older versions are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "RHBZ#1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3449",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T15:56:54+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1199"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by disabling TLS renegotiation on servers compiled with OpenSSL. It is enabled by default, but can be disabled for servers which do not require it and can be used to mitigate this flaw. Versions of httpd package shipped with Red Hat Enterprise Linux 8 have TLS renegotiation disabled by default.",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: NULL pointer dereference in signature_algorithms processing"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL Project"
]
},
{
"names": [
"Benjamin Kaduk"
],
"summary": "Acknowledged by upstream."
},
{
"names": [
"Xiang Ding and others"
],
"organization": "Akamai",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3450",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941547"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw affects openssl 1.1.1h and above only, older versions are not affected by this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "RHBZ#1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3450",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T15:56:54+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1199"
},
{
"category": "workaround",
"details": "The following conditions have to be met for an application compiled with OpenSSL to be vulnerable:\n\n- the CA trusted by the system must issue or have issued certificates that don\u0027t include basic Key Usage extension.\n- the CA certificates must not have path length constraint set to a value that would limit the certificate chain to just the subscriber certificates (i.e. CA certificate just above the subscriber cert must not have 0 as the path length constraint, and any CA above it must not have it increase by more than 1 for every level in the hierarchy)\n- the attacker needs to have access to such subscriber certificate (without basic Key Usage and linking up to CAs without path length constraints or not effectively constraining certs issued by this certificate)\n- the application under attack must use the X509_V_FLAG_X509_STRICT flag and must not set purpose for the certificate verification\n\nif any of the above conditions are not met then the application compiled with OpenSSL is not vulnerable to the CVE.",
"product_ids": [
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-httpd-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-debuginfo-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-devel-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-manual-0:2.4.37-70.jbcs.el7.noarch",
"7Server-JBCS:jbcs-httpd24-httpd-selinux-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-httpd-tools-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_cluster-native-debuginfo-0:1.3.14-20.Final_redhat_2.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_http2-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_http2-debuginfo-0:1.15.7-14.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-0:1.2.48-13.redhat_1.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_jk-ap24-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-debuginfo-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_jk-manual-0:1.2.48-13.redhat_1.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ldap-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_md-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_md-debuginfo-1:2.0.8-33.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_proxy_html-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-mod_security-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_security-debuginfo-0:2.9.2-60.GA.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_session-0:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-mod_ssl-1:2.4.37-70.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-nghttp2-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-debuginfo-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-nghttp2-devel-0:1.39.2-37.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-chil-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-chil-debuginfo-0:1.0.0-5.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-debuginfo-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-devel-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-libs-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-perl-1:1.1.1g-6.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.src",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-pkcs11-debuginfo-0:0.4.10-20.jbcs.el7.x86_64",
"7Server-JBCS:jbcs-httpd24-openssl-static-1:1.1.1g-6.jbcs.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT"
}
]
}
RHSA-2021:1200
Vulnerability from csaf_redhat - Published: 2021-04-14 15:59 - Updated: 2026-05-14 22:31Summary
Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP7 security update
Severity
Important
Notes
Topic: Red Hat JBoss Core Services Pack Apache Server 2.4.37 Service Pack 7 zip release for RHEL 7, RHEL 8 and Microsoft Windows is available.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience.
This release adds the new Apache HTTP Server 2.4.37 Service Pack 7 packages that are part of the JBoss Core Services offering.
This release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.37 Service Pack 6 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.
Security fix(es):
* openssl: NULL pointer deref in signature_algorithms processing (CVE-2021-3449)
* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
JBCS 2.4.37 SP7
Red Hat / Red Hat JBoss Core Services
|
cpe:/a:redhat:jboss_core_services:1
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.
7.4 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
JBCS 2.4.37 SP7
Red Hat / Red Hat JBoss Core Services
|
cpe:/a:redhat:jboss_core_services:1
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
15 references
Acknowledgments
the OpenSSL project
Nokia
the OpenSSL Project
Benjamin Kaduk
Akamai
Xiang Ding and others
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat JBoss Core Services Pack Apache Server 2.4.37 Service Pack 7 zip release for RHEL 7, RHEL 8 and Microsoft Windows is available.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat JBoss Core Services is a set of supplementary software for Red Hat JBoss middleware products. This software, such as Apache HTTP Server, is common to multiple JBoss middleware products, and is packaged under Red Hat JBoss Core Services to allow for faster distribution of updates, and for a more consistent update experience.\n\nThis release adds the new Apache HTTP Server 2.4.37 Service Pack 7 packages that are part of the JBoss Core Services offering.\n\nThis release serves as a replacement for Red Hat JBoss Core Services Pack Apache Server 2.4.37 Service Pack 6 and includes bug fixes and enhancements. Refer to the Release Notes for information on the most significant bug fixes and enhancements included in this release.\n\nSecurity fix(es):\n\n* openssl: NULL pointer deref in signature_algorithms processing (CVE-2021-3449)\n\n* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:1200",
"url": "https://access.redhat.com/errata/RHSA-2021:1200"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=core.service.apachehttp\u0026downloadType=securityPatches\u0026version=2.4.37",
"url": "https://access.redhat.com/jbossnetwork/restricted/listSoftware.html?product=core.service.apachehttp\u0026downloadType=securityPatches\u0026version=2.4.37"
},
{
"category": "external",
"summary": "1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1200.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Core Services Apache HTTP Server 2.4.37 SP7 security update",
"tracking": {
"current_release_date": "2026-05-14T22:31:04+00:00",
"generator": {
"date": "2026-05-14T22:31:04+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.0"
}
},
"id": "RHSA-2021:1200",
"initial_release_date": "2021-04-14T15:59:58+00:00",
"revision_history": [
{
"date": "2021-04-14T15:59:58+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-04-14T15:59:58+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-14T22:31:04+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "JBCS 2.4.37 SP7",
"product": {
"name": "JBCS 2.4.37 SP7",
"product_id": "JBCS 2.4.37 SP7",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_core_services:1"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Core Services"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Nokia"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3449",
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941554"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: NULL pointer dereference in signature_algorithms processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw only affects OpenSSL 1.1.1, older versions are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"JBCS 2.4.37 SP7"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "RHBZ#1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3449",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T15:59:58+00:00",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link for the update. You must be logged in to download the update.",
"product_ids": [
"JBCS 2.4.37 SP7"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1200"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by disabling TLS renegotiation on servers compiled with OpenSSL. It is enabled by default, but can be disabled for servers which do not require it and can be used to mitigate this flaw. Versions of httpd package shipped with Red Hat Enterprise Linux 8 have TLS renegotiation disabled by default.",
"product_ids": [
"JBCS 2.4.37 SP7"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"JBCS 2.4.37 SP7"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: NULL pointer dereference in signature_algorithms processing"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL Project"
]
},
{
"names": [
"Benjamin Kaduk"
],
"summary": "Acknowledged by upstream."
},
{
"names": [
"Xiang Ding and others"
],
"organization": "Akamai",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3450",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941547"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw affects openssl 1.1.1h and above only, older versions are not affected by this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"JBCS 2.4.37 SP7"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "RHBZ#1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3450",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T15:59:58+00:00",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link for the update. You must be logged in to download the update.",
"product_ids": [
"JBCS 2.4.37 SP7"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1200"
},
{
"category": "workaround",
"details": "The following conditions have to be met for an application compiled with OpenSSL to be vulnerable:\n\n- the CA trusted by the system must issue or have issued certificates that don\u0027t include basic Key Usage extension.\n- the CA certificates must not have path length constraint set to a value that would limit the certificate chain to just the subscriber certificates (i.e. CA certificate just above the subscriber cert must not have 0 as the path length constraint, and any CA above it must not have it increase by more than 1 for every level in the hierarchy)\n- the attacker needs to have access to such subscriber certificate (without basic Key Usage and linking up to CAs without path length constraints or not effectively constraining certs issued by this certificate)\n- the application under attack must use the X509_V_FLAG_X509_STRICT flag and must not set purpose for the certificate verification\n\nif any of the above conditions are not met then the application compiled with OpenSSL is not vulnerable to the CVE.",
"product_ids": [
"JBCS 2.4.37 SP7"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"JBCS 2.4.37 SP7"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT"
}
]
}
RHSA-2021:1202
Vulnerability from csaf_redhat - Published: 2021-04-14 18:02 - Updated: 2026-05-14 22:31Summary
Red Hat Security Advisory: Red Hat JBoss Web Server 3.1 Service Pack 12 security update
Severity
Important
Notes
Topic: An update is now available for Red Hat JBoss Web Server 3.1 for RHEL 7.
Red Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector (mod_jk), JBoss HTTP Connector (mod_cluster), Hibernate, and the Tomcat Native library.
This release of Red Hat JBoss Web Server 3.1 Service Pack 12 serves as a replacement for Red Hat JBoss Web Server 3.1.11, and includes bug fixes, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)
* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.
5.9 (Medium)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JWS-3.1:tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.
7.4 (High)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: 7Server-JWS-3.1:tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
14 references
Acknowledgments
the OpenSSL project
Nokia
the OpenSSL Project
Benjamin Kaduk
Akamai
Xiang Ding and others
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat JBoss Web Server 3.1 for RHEL 7.\n\nRed Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector (mod_jk), JBoss HTTP Connector (mod_cluster), Hibernate, and the Tomcat Native library.\n\nThis release of Red Hat JBoss Web Server 3.1 Service Pack 12 serves as a replacement for Red Hat JBoss Web Server 3.1.11, and includes bug fixes, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)\n* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:1202",
"url": "https://access.redhat.com/errata/RHSA-2021:1202"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1202.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Web Server 3.1 Service Pack 12 security update",
"tracking": {
"current_release_date": "2026-05-14T22:31:06+00:00",
"generator": {
"date": "2026-05-14T22:31:06+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.0"
}
},
"id": "RHSA-2021:1202",
"initial_release_date": "2021-04-14T18:02:04+00:00",
"revision_history": [
{
"date": "2021-04-14T18:02:04+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-04-14T18:02:04+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-14T22:31:06+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Web Server 3.1 for RHEL 7",
"product": {
"name": "Red Hat JBoss Web Server 3.1 for RHEL 7",
"product_id": "7Server-JWS-3.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:3.1::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Web Server"
},
{
"branches": [
{
"category": "product_version",
"name": "tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src",
"product": {
"name": "tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src",
"product_id": "tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tomcat-native@1.2.23-24.redhat_24.ep7.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"product": {
"name": "tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"product_id": "tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tomcat-native@1.2.23-24.redhat_24.ep7.el7?arch=x86_64"
}
}
},
{
"category": "product_version",
"name": "tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"product": {
"name": "tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"product_id": "tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/tomcat-native-debuginfo@1.2.23-24.redhat_24.ep7.el7?arch=x86_64"
}
}
}
],
"category": "architecture",
"name": "x86_64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src as a component of Red Hat JBoss Web Server 3.1 for RHEL 7",
"product_id": "7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src"
},
"product_reference": "tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src",
"relates_to_product_reference": "7Server-JWS-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64 as a component of Red Hat JBoss Web Server 3.1 for RHEL 7",
"product_id": "7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64"
},
"product_reference": "tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"relates_to_product_reference": "7Server-JWS-3.1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64 as a component of Red Hat JBoss Web Server 3.1 for RHEL 7",
"product_id": "7Server-JWS-3.1:tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64"
},
"product_reference": "tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"relates_to_product_reference": "7Server-JWS-3.1"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Nokia"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3449",
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941554"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: NULL pointer dereference in signature_algorithms processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw only affects OpenSSL 1.1.1, older versions are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src",
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"7Server-JWS-3.1:tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "RHBZ#1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3449",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T18:02:04+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src",
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"7Server-JWS-3.1:tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1202"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by disabling TLS renegotiation on servers compiled with OpenSSL. It is enabled by default, but can be disabled for servers which do not require it and can be used to mitigate this flaw. Versions of httpd package shipped with Red Hat Enterprise Linux 8 have TLS renegotiation disabled by default.",
"product_ids": [
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src",
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"7Server-JWS-3.1:tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src",
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"7Server-JWS-3.1:tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: NULL pointer dereference in signature_algorithms processing"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL Project"
]
},
{
"names": [
"Benjamin Kaduk"
],
"summary": "Acknowledged by upstream."
},
{
"names": [
"Xiang Ding and others"
],
"organization": "Akamai",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3450",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941547"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw affects openssl 1.1.1h and above only, older versions are not affected by this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src",
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"7Server-JWS-3.1:tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "RHBZ#1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3450",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T18:02:04+00:00",
"details": "Before applying this update, make sure all previously released errata relevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src",
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"7Server-JWS-3.1:tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1202"
},
{
"category": "workaround",
"details": "The following conditions have to be met for an application compiled with OpenSSL to be vulnerable:\n\n- the CA trusted by the system must issue or have issued certificates that don\u0027t include basic Key Usage extension.\n- the CA certificates must not have path length constraint set to a value that would limit the certificate chain to just the subscriber certificates (i.e. CA certificate just above the subscriber cert must not have 0 as the path length constraint, and any CA above it must not have it increase by more than 1 for every level in the hierarchy)\n- the attacker needs to have access to such subscriber certificate (without basic Key Usage and linking up to CAs without path length constraints or not effectively constraining certs issued by this certificate)\n- the application under attack must use the X509_V_FLAG_X509_STRICT flag and must not set purpose for the certificate verification\n\nif any of the above conditions are not met then the application compiled with OpenSSL is not vulnerable to the CVE.",
"product_ids": [
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src",
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"7Server-JWS-3.1:tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.src",
"7Server-JWS-3.1:tomcat-native-0:1.2.23-24.redhat_24.ep7.el7.x86_64",
"7Server-JWS-3.1:tomcat-native-debuginfo-0:1.2.23-24.redhat_24.ep7.el7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT"
}
]
}
RHSA-2021:1203
Vulnerability from csaf_redhat - Published: 2021-04-14 17:57 - Updated: 2026-05-14 22:31Summary
Red Hat Security Advisory: Red Hat JBoss Web Server 3.1 Service Pack 12 security update
Severity
Important
Notes
Topic: An update is now available for Red Hat JBoss Web Server 3.1, for RHEL 7 and Windows.
Red Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector (mod_jk), JBoss HTTP Connector (mod_cluster), Hibernate, and the Tomcat Native library.
This release of Red Hat JBoss Web Server 3.1 Service Pack 12 serves as a replacement for Red Hat JBoss Web Server 3.1.11, and includes bug fixes, which are documented in the Release Notes document linked to in the References.
Security Fix(es):
* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)
* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.
5.9 (Medium)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Web Server 3.1
Red Hat / Red Hat JBoss Web Server
|
cpe:/a:redhat:jboss_enterprise_web_server:3.1
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.
7.4 (High)
Affected products
Fixed
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat JBoss Web Server 3.1
Red Hat / Red Hat JBoss Web Server
|
cpe:/a:redhat:jboss_enterprise_web_server:3.1
|
— |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
14 references
Acknowledgments
the OpenSSL project
Nokia
the OpenSSL Project
Benjamin Kaduk
Akamai
Xiang Ding and others
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update is now available for Red Hat JBoss Web Server 3.1, for RHEL 7 and Windows.\n\nRed Hat Product Security has rated this release as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat JBoss Web Server is a fully integrated and certified set of components for hosting Java web applications. It is comprised of the Apache HTTP Server, the Apache Tomcat Servlet container, Apache Tomcat Connector (mod_jk), JBoss HTTP Connector (mod_cluster), Hibernate, and the Tomcat Native library.\n\nThis release of Red Hat JBoss Web Server 3.1 Service Pack 12 serves as a replacement for Red Hat JBoss Web Server 3.1.11, and includes bug fixes, which are documented in the Release Notes document linked to in the References.\n\nSecurity Fix(es):\n\n* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)\n* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:1203",
"url": "https://access.redhat.com/errata/RHSA-2021:1203"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1203.json"
}
],
"title": "Red Hat Security Advisory: Red Hat JBoss Web Server 3.1 Service Pack 12 security update",
"tracking": {
"current_release_date": "2026-05-14T22:31:06+00:00",
"generator": {
"date": "2026-05-14T22:31:06+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.8.0"
}
},
"id": "RHSA-2021:1203",
"initial_release_date": "2021-04-14T17:57:20+00:00",
"revision_history": [
{
"date": "2021-04-14T17:57:20+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-04-14T17:57:20+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2026-05-14T22:31:06+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat JBoss Web Server 3.1",
"product": {
"name": "Red Hat JBoss Web Server 3.1",
"product_id": "Red Hat JBoss Web Server 3.1",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:jboss_enterprise_web_server:3.1"
}
}
}
],
"category": "product_family",
"name": "Red Hat JBoss Web Server"
}
],
"category": "vendor",
"name": "Red Hat"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Nokia"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3449",
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941554"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: NULL pointer dereference in signature_algorithms processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw only affects OpenSSL 1.1.1, older versions are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Web Server 3.1"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "RHBZ#1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3449",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T17:57:20+00:00",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link for the update. You must be logged in to download the update.",
"product_ids": [
"Red Hat JBoss Web Server 3.1"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1203"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by disabling TLS renegotiation on servers compiled with OpenSSL. It is enabled by default, but can be disabled for servers which do not require it and can be used to mitigate this flaw. Versions of httpd package shipped with Red Hat Enterprise Linux 8 have TLS renegotiation disabled by default.",
"product_ids": [
"Red Hat JBoss Web Server 3.1"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"Red Hat JBoss Web Server 3.1"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: NULL pointer dereference in signature_algorithms processing"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL Project"
]
},
{
"names": [
"Benjamin Kaduk"
],
"summary": "Acknowledged by upstream."
},
{
"names": [
"Xiang Ding and others"
],
"organization": "Akamai",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3450",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941547"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw affects openssl 1.1.1h and above only, older versions are not affected by this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"Red Hat JBoss Web Server 3.1"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "RHBZ#1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3450",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-14T17:57:20+00:00",
"details": "Before applying the update, back up your existing installation, including all applications, configuration files, databases and database settings, and so on.\n\nThe References section of this erratum contains a download link for the update. You must be logged in to download the update.",
"product_ids": [
"Red Hat JBoss Web Server 3.1"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1203"
},
{
"category": "workaround",
"details": "The following conditions have to be met for an application compiled with OpenSSL to be vulnerable:\n\n- the CA trusted by the system must issue or have issued certificates that don\u0027t include basic Key Usage extension.\n- the CA certificates must not have path length constraint set to a value that would limit the certificate chain to just the subscriber certificates (i.e. CA certificate just above the subscriber cert must not have 0 as the path length constraint, and any CA above it must not have it increase by more than 1 for every level in the hierarchy)\n- the attacker needs to have access to such subscriber certificate (without basic Key Usage and linking up to CAs without path length constraints or not effectively constraining certs issued by this certificate)\n- the application under attack must use the X509_V_FLAG_X509_STRICT flag and must not set purpose for the certificate verification\n\nif any of the above conditions are not met then the application compiled with OpenSSL is not vulnerable to the CVE.",
"product_ids": [
"Red Hat JBoss Web Server 3.1"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"Red Hat JBoss Web Server 3.1"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT"
}
]
}
RHSA-2021_1024
Vulnerability from csaf_redhat - Published: 2021-03-30 14:40 - Updated: 2024-11-22 16:40Summary
Red Hat Security Advisory: openssl security update
Severity
Important
Notes
Topic: An update for openssl is now available for Red Hat Enterprise Linux 8.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.
Security Fix(es):
* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)
* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.
5.9 (Medium)
Affected products
Fixed
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.
7.4 (High)
Affected products
Fixed
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
14 references
Acknowledgments
the OpenSSL project
Nokia
the OpenSSL Project
Benjamin Kaduk
Akamai
Xiang Ding and others
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for openssl is now available for Red Hat Enterprise Linux 8.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.\n\nSecurity Fix(es):\n\n* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)\n\n* openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT (CVE-2021-3450)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:1024",
"url": "https://access.redhat.com/errata/RHSA-2021:1024"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1024.json"
}
],
"title": "Red Hat Security Advisory: openssl security update",
"tracking": {
"current_release_date": "2024-11-22T16:40:13+00:00",
"generator": {
"date": "2024-11-22T16:40:13+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2021:1024",
"initial_release_date": "2021-03-30T14:40:51+00:00",
"revision_history": [
{
"date": "2021-03-30T14:40:51+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-03-30T14:40:51+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T16:40:13+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:8::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1g-15.el8_3.src",
"product": {
"name": "openssl-1:1.1.1g-15.el8_3.src",
"product_id": "openssl-1:1.1.1g-15.el8_3.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1g-15.el8_3?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1g-15.el8_3.aarch64",
"product": {
"name": "openssl-1:1.1.1g-15.el8_3.aarch64",
"product_id": "openssl-1:1.1.1g-15.el8_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1g-15.el8_3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1g-15.el8_3.aarch64",
"product": {
"name": "openssl-devel-1:1.1.1g-15.el8_3.aarch64",
"product_id": "openssl-devel-1:1.1.1g-15.el8_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-15.el8_3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1g-15.el8_3.aarch64",
"product": {
"name": "openssl-libs-1:1.1.1g-15.el8_3.aarch64",
"product_id": "openssl-libs-1:1.1.1g-15.el8_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-15.el8_3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.1.1g-15.el8_3.aarch64",
"product": {
"name": "openssl-perl-1:1.1.1g-15.el8_3.aarch64",
"product_id": "openssl-perl-1:1.1.1g-15.el8_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.1.1g-15.el8_3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.aarch64",
"product": {
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.aarch64",
"product_id": "openssl-debugsource-1:1.1.1g-15.el8_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-15.el8_3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"product": {
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"product_id": "openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-15.el8_3?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"product_id": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-15.el8_3?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1g-15.el8_3.ppc64le",
"product": {
"name": "openssl-1:1.1.1g-15.el8_3.ppc64le",
"product_id": "openssl-1:1.1.1g-15.el8_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1g-15.el8_3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1g-15.el8_3.ppc64le",
"product": {
"name": "openssl-devel-1:1.1.1g-15.el8_3.ppc64le",
"product_id": "openssl-devel-1:1.1.1g-15.el8_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-15.el8_3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1g-15.el8_3.ppc64le",
"product": {
"name": "openssl-libs-1:1.1.1g-15.el8_3.ppc64le",
"product_id": "openssl-libs-1:1.1.1g-15.el8_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-15.el8_3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.1.1g-15.el8_3.ppc64le",
"product": {
"name": "openssl-perl-1:1.1.1g-15.el8_3.ppc64le",
"product_id": "openssl-perl-1:1.1.1g-15.el8_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.1.1g-15.el8_3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le",
"product": {
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le",
"product_id": "openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-15.el8_3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"product": {
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"product_id": "openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-15.el8_3?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"product_id": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-15.el8_3?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1g-15.el8_3.x86_64",
"product": {
"name": "openssl-1:1.1.1g-15.el8_3.x86_64",
"product_id": "openssl-1:1.1.1g-15.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1g-15.el8_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1g-15.el8_3.x86_64",
"product": {
"name": "openssl-devel-1:1.1.1g-15.el8_3.x86_64",
"product_id": "openssl-devel-1:1.1.1g-15.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-15.el8_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1g-15.el8_3.x86_64",
"product": {
"name": "openssl-libs-1:1.1.1g-15.el8_3.x86_64",
"product_id": "openssl-libs-1:1.1.1g-15.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-15.el8_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.1.1g-15.el8_3.x86_64",
"product": {
"name": "openssl-perl-1:1.1.1g-15.el8_3.x86_64",
"product_id": "openssl-perl-1:1.1.1g-15.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.1.1g-15.el8_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.x86_64",
"product": {
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.x86_64",
"product_id": "openssl-debugsource-1:1.1.1g-15.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-15.el8_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"product": {
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"product_id": "openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-15.el8_3?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"product_id": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-15.el8_3?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1g-15.el8_3.i686",
"product": {
"name": "openssl-devel-1:1.1.1g-15.el8_3.i686",
"product_id": "openssl-devel-1:1.1.1g-15.el8_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-15.el8_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1g-15.el8_3.i686",
"product": {
"name": "openssl-libs-1:1.1.1g-15.el8_3.i686",
"product_id": "openssl-libs-1:1.1.1g-15.el8_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-15.el8_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.i686",
"product": {
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.i686",
"product_id": "openssl-debugsource-1:1.1.1g-15.el8_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-15.el8_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.i686",
"product": {
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.i686",
"product_id": "openssl-debuginfo-1:1.1.1g-15.el8_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-15.el8_3?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686",
"product_id": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-15.el8_3?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1g-15.el8_3.s390x",
"product": {
"name": "openssl-1:1.1.1g-15.el8_3.s390x",
"product_id": "openssl-1:1.1.1g-15.el8_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1g-15.el8_3?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1g-15.el8_3.s390x",
"product": {
"name": "openssl-devel-1:1.1.1g-15.el8_3.s390x",
"product_id": "openssl-devel-1:1.1.1g-15.el8_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1g-15.el8_3?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1g-15.el8_3.s390x",
"product": {
"name": "openssl-libs-1:1.1.1g-15.el8_3.s390x",
"product_id": "openssl-libs-1:1.1.1g-15.el8_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1g-15.el8_3?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.1.1g-15.el8_3.s390x",
"product": {
"name": "openssl-perl-1:1.1.1g-15.el8_3.s390x",
"product_id": "openssl-perl-1:1.1.1g-15.el8_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.1.1g-15.el8_3?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.s390x",
"product": {
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.s390x",
"product_id": "openssl-debugsource-1:1.1.1g-15.el8_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1g-15.el8_3?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.s390x",
"product": {
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.s390x",
"product_id": "openssl-debuginfo-1:1.1.1g-15.el8_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1g-15.el8_3?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x",
"product_id": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1g-15.el8_3?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1g-15.el8_3.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.aarch64"
},
"product_reference": "openssl-1:1.1.1g-15.el8_3.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1g-15.el8_3.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.ppc64le"
},
"product_reference": "openssl-1:1.1.1g-15.el8_3.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1g-15.el8_3.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.s390x"
},
"product_reference": "openssl-1:1.1.1g-15.el8_3.s390x",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1g-15.el8_3.src as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.src"
},
"product_reference": "openssl-1:1.1.1g-15.el8_3.src",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1g-15.el8_3.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.x86_64"
},
"product_reference": "openssl-1:1.1.1g-15.el8_3.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.i686"
},
"product_reference": "openssl-debuginfo-1:1.1.1g-15.el8_3.i686",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.s390x"
},
"product_reference": "openssl-debuginfo-1:1.1.1g-15.el8_3.s390x",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.aarch64"
},
"product_reference": "openssl-debugsource-1:1.1.1g-15.el8_3.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.i686"
},
"product_reference": "openssl-debugsource-1:1.1.1g-15.el8_3.i686",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le"
},
"product_reference": "openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.s390x"
},
"product_reference": "openssl-debugsource-1:1.1.1g-15.el8_3.s390x",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1g-15.el8_3.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.x86_64"
},
"product_reference": "openssl-debugsource-1:1.1.1g-15.el8_3.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1g-15.el8_3.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.aarch64"
},
"product_reference": "openssl-devel-1:1.1.1g-15.el8_3.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1g-15.el8_3.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.i686"
},
"product_reference": "openssl-devel-1:1.1.1g-15.el8_3.i686",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1g-15.el8_3.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.ppc64le"
},
"product_reference": "openssl-devel-1:1.1.1g-15.el8_3.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1g-15.el8_3.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.s390x"
},
"product_reference": "openssl-devel-1:1.1.1g-15.el8_3.s390x",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1g-15.el8_3.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.x86_64"
},
"product_reference": "openssl-devel-1:1.1.1g-15.el8_3.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1g-15.el8_3.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.aarch64"
},
"product_reference": "openssl-libs-1:1.1.1g-15.el8_3.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1g-15.el8_3.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.i686"
},
"product_reference": "openssl-libs-1:1.1.1g-15.el8_3.i686",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1g-15.el8_3.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.ppc64le"
},
"product_reference": "openssl-libs-1:1.1.1g-15.el8_3.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1g-15.el8_3.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.s390x"
},
"product_reference": "openssl-libs-1:1.1.1g-15.el8_3.s390x",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1g-15.el8_3.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.x86_64"
},
"product_reference": "openssl-libs-1:1.1.1g-15.el8_3.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.1.1g-15.el8_3.aarch64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.aarch64"
},
"product_reference": "openssl-perl-1:1.1.1g-15.el8_3.aarch64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.1.1g-15.el8_3.ppc64le as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.ppc64le"
},
"product_reference": "openssl-perl-1:1.1.1g-15.el8_3.ppc64le",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.1.1g-15.el8_3.s390x as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.s390x"
},
"product_reference": "openssl-perl-1:1.1.1g-15.el8_3.s390x",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.1.1g-15.el8_3.x86_64 as a component of Red Hat Enterprise Linux BaseOS (v. 8)",
"product_id": "BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.x86_64"
},
"product_reference": "openssl-perl-1:1.1.1g-15.el8_3.x86_64",
"relates_to_product_reference": "BaseOS-8.3.0.Z.MAIN"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Nokia"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3449",
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941554"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: NULL pointer dereference in signature_algorithms processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw only affects OpenSSL 1.1.1, older versions are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.src",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "RHBZ#1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3449",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-30T14:40:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.",
"product_ids": [
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.src",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1024"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by disabling TLS renegotiation on servers compiled with OpenSSL. It is enabled by default, but can be disabled for servers which do not require it and can be used to mitigate this flaw. Versions of httpd package shipped with Red Hat Enterprise Linux 8 have TLS renegotiation disabled by default.",
"product_ids": [
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.src",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.src",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: NULL pointer dereference in signature_algorithms processing"
},
{
"acknowledgments": [
{
"names": [
"the OpenSSL Project"
]
},
{
"names": [
"Benjamin Kaduk"
],
"summary": "Acknowledged by upstream."
},
{
"names": [
"Xiang Ding and others"
],
"organization": "Akamai",
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3450",
"cwe": {
"id": "CWE-295",
"name": "Improper Certificate Validation"
},
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941547"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. The flag that enables additional security checks of certificates present in a certificate chain was not enabled allowing a confirmation step to verify that certificates in the chain are valid CA certificates is bypassed. The highest threat from this vulnerability is to data confidentiality and integrity.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw affects openssl 1.1.1h and above only, older versions are not affected by this flaw.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.src",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3450"
},
{
"category": "external",
"summary": "RHBZ#1941547",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941547"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3450",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3450"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3450"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-03-30T14:40:51+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.",
"product_ids": [
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.src",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1024"
},
{
"category": "workaround",
"details": "The following conditions have to be met for an application compiled with OpenSSL to be vulnerable:\n\n- the CA trusted by the system must issue or have issued certificates that don\u0027t include basic Key Usage extension.\n- the CA certificates must not have path length constraint set to a value that would limit the certificate chain to just the subscriber certificates (i.e. CA certificate just above the subscriber cert must not have 0 as the path length constraint, and any CA above it must not have it increase by more than 1 for every level in the hierarchy)\n- the attacker needs to have access to such subscriber certificate (without basic Key Usage and linking up to CAs without path length constraints or not effectively constraining certs issued by this certificate)\n- the application under attack must use the X509_V_FLAG_X509_STRICT flag and must not set purpose for the certificate verification\n\nif any of the above conditions are not met then the application compiled with OpenSSL is not vulnerable to the CVE.",
"product_ids": [
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.src",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "NONE",
"baseScore": 7.4,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"version": "3.1"
},
"products": [
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.src",
"BaseOS-8.3.0.Z.MAIN:openssl-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-debugsource-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-devel-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.i686",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-libs-debuginfo-1:1.1.1g-15.el8_3.x86_64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.aarch64",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.ppc64le",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.s390x",
"BaseOS-8.3.0.Z.MAIN:openssl-perl-1:1.1.1g-15.el8_3.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: CA certificate check bypass with X509_V_FLAG_X509_STRICT"
}
]
}
RHSA-2021_1063
Vulnerability from csaf_redhat - Published: 2021-04-05 13:48 - Updated: 2024-11-22 16:40Summary
Red Hat Security Advisory: openssl security update
Severity
Important
Notes
Topic: An update for openssl is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.
Security Fix(es):
* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.
5.9 (Medium)
Affected products
Fixed
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
9 references
Acknowledgments
the OpenSSL project
Nokia
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for openssl is now available for Red Hat Enterprise Linux 8.2 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.\n\nSecurity Fix(es):\n\n* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:1063",
"url": "https://access.redhat.com/errata/RHSA-2021:1063"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1063.json"
}
],
"title": "Red Hat Security Advisory: openssl security update",
"tracking": {
"current_release_date": "2024-11-22T16:40:20+00:00",
"generator": {
"date": "2024-11-22T16:40:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2021:1063",
"initial_release_date": "2021-04-05T13:48:26+00:00",
"revision_history": [
{
"date": "2021-04-05T13:48:26+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-04-05T13:48:26+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T16:40:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:8.2::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1c-18.el8_2.src",
"product": {
"name": "openssl-1:1.1.1c-18.el8_2.src",
"product_id": "openssl-1:1.1.1c-18.el8_2.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1c-18.el8_2?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1c-18.el8_2.aarch64",
"product": {
"name": "openssl-1:1.1.1c-18.el8_2.aarch64",
"product_id": "openssl-1:1.1.1c-18.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1c-18.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1c-18.el8_2.aarch64",
"product": {
"name": "openssl-devel-1:1.1.1c-18.el8_2.aarch64",
"product_id": "openssl-devel-1:1.1.1c-18.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1c-18.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1c-18.el8_2.aarch64",
"product": {
"name": "openssl-libs-1:1.1.1c-18.el8_2.aarch64",
"product_id": "openssl-libs-1:1.1.1c-18.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1c-18.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.1.1c-18.el8_2.aarch64",
"product": {
"name": "openssl-perl-1:1.1.1c-18.el8_2.aarch64",
"product_id": "openssl-perl-1:1.1.1c-18.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.1.1c-18.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.aarch64",
"product": {
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.aarch64",
"product_id": "openssl-debugsource-1:1.1.1c-18.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1c-18.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"product": {
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"product_id": "openssl-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1c-18.el8_2?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"product_id": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1c-18.el8_2?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1c-18.el8_2.ppc64le",
"product": {
"name": "openssl-1:1.1.1c-18.el8_2.ppc64le",
"product_id": "openssl-1:1.1.1c-18.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1c-18.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1c-18.el8_2.ppc64le",
"product": {
"name": "openssl-devel-1:1.1.1c-18.el8_2.ppc64le",
"product_id": "openssl-devel-1:1.1.1c-18.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1c-18.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1c-18.el8_2.ppc64le",
"product": {
"name": "openssl-libs-1:1.1.1c-18.el8_2.ppc64le",
"product_id": "openssl-libs-1:1.1.1c-18.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1c-18.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.1.1c-18.el8_2.ppc64le",
"product": {
"name": "openssl-perl-1:1.1.1c-18.el8_2.ppc64le",
"product_id": "openssl-perl-1:1.1.1c-18.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.1.1c-18.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.ppc64le",
"product": {
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.ppc64le",
"product_id": "openssl-debugsource-1:1.1.1c-18.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1c-18.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"product": {
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"product_id": "openssl-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1c-18.el8_2?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"product_id": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1c-18.el8_2?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1c-18.el8_2.x86_64",
"product": {
"name": "openssl-1:1.1.1c-18.el8_2.x86_64",
"product_id": "openssl-1:1.1.1c-18.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1c-18.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1c-18.el8_2.x86_64",
"product": {
"name": "openssl-devel-1:1.1.1c-18.el8_2.x86_64",
"product_id": "openssl-devel-1:1.1.1c-18.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1c-18.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1c-18.el8_2.x86_64",
"product": {
"name": "openssl-libs-1:1.1.1c-18.el8_2.x86_64",
"product_id": "openssl-libs-1:1.1.1c-18.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1c-18.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.1.1c-18.el8_2.x86_64",
"product": {
"name": "openssl-perl-1:1.1.1c-18.el8_2.x86_64",
"product_id": "openssl-perl-1:1.1.1c-18.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.1.1c-18.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.x86_64",
"product": {
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.x86_64",
"product_id": "openssl-debugsource-1:1.1.1c-18.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1c-18.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"product": {
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"product_id": "openssl-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1c-18.el8_2?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"product_id": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1c-18.el8_2?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1c-18.el8_2.i686",
"product": {
"name": "openssl-devel-1:1.1.1c-18.el8_2.i686",
"product_id": "openssl-devel-1:1.1.1c-18.el8_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1c-18.el8_2?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1c-18.el8_2.i686",
"product": {
"name": "openssl-libs-1:1.1.1c-18.el8_2.i686",
"product_id": "openssl-libs-1:1.1.1c-18.el8_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1c-18.el8_2?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.i686",
"product": {
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.i686",
"product_id": "openssl-debugsource-1:1.1.1c-18.el8_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1c-18.el8_2?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.i686",
"product": {
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.i686",
"product_id": "openssl-debuginfo-1:1.1.1c-18.el8_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1c-18.el8_2?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.i686",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.i686",
"product_id": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1c-18.el8_2?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1c-18.el8_2.s390x",
"product": {
"name": "openssl-1:1.1.1c-18.el8_2.s390x",
"product_id": "openssl-1:1.1.1c-18.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1c-18.el8_2?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1c-18.el8_2.s390x",
"product": {
"name": "openssl-devel-1:1.1.1c-18.el8_2.s390x",
"product_id": "openssl-devel-1:1.1.1c-18.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1c-18.el8_2?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1c-18.el8_2.s390x",
"product": {
"name": "openssl-libs-1:1.1.1c-18.el8_2.s390x",
"product_id": "openssl-libs-1:1.1.1c-18.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1c-18.el8_2?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.1.1c-18.el8_2.s390x",
"product": {
"name": "openssl-perl-1:1.1.1c-18.el8_2.s390x",
"product_id": "openssl-perl-1:1.1.1c-18.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.1.1c-18.el8_2?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.s390x",
"product": {
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.s390x",
"product_id": "openssl-debugsource-1:1.1.1c-18.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1c-18.el8_2?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.s390x",
"product": {
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.s390x",
"product_id": "openssl-debuginfo-1:1.1.1c-18.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1c-18.el8_2?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.s390x",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.s390x",
"product_id": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1c-18.el8_2?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1c-18.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.aarch64"
},
"product_reference": "openssl-1:1.1.1c-18.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1c-18.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.ppc64le"
},
"product_reference": "openssl-1:1.1.1c-18.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1c-18.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.s390x"
},
"product_reference": "openssl-1:1.1.1c-18.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1c-18.el8_2.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.src"
},
"product_reference": "openssl-1:1.1.1c-18.el8_2.src",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1c-18.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.x86_64"
},
"product_reference": "openssl-1:1.1.1c-18.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.i686"
},
"product_reference": "openssl-debuginfo-1:1.1.1c-18.el8_2.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.s390x"
},
"product_reference": "openssl-debuginfo-1:1.1.1c-18.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1c-18.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.aarch64"
},
"product_reference": "openssl-debugsource-1:1.1.1c-18.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.i686"
},
"product_reference": "openssl-debugsource-1:1.1.1c-18.el8_2.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.ppc64le"
},
"product_reference": "openssl-debugsource-1:1.1.1c-18.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.s390x"
},
"product_reference": "openssl-debugsource-1:1.1.1c-18.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1c-18.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.x86_64"
},
"product_reference": "openssl-debugsource-1:1.1.1c-18.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1c-18.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.aarch64"
},
"product_reference": "openssl-devel-1:1.1.1c-18.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1c-18.el8_2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.i686"
},
"product_reference": "openssl-devel-1:1.1.1c-18.el8_2.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1c-18.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.ppc64le"
},
"product_reference": "openssl-devel-1:1.1.1c-18.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1c-18.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.s390x"
},
"product_reference": "openssl-devel-1:1.1.1c-18.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1c-18.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.x86_64"
},
"product_reference": "openssl-devel-1:1.1.1c-18.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1c-18.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.aarch64"
},
"product_reference": "openssl-libs-1:1.1.1c-18.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1c-18.el8_2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.i686"
},
"product_reference": "openssl-libs-1:1.1.1c-18.el8_2.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1c-18.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.ppc64le"
},
"product_reference": "openssl-libs-1:1.1.1c-18.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1c-18.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.s390x"
},
"product_reference": "openssl-libs-1:1.1.1c-18.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1c-18.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.x86_64"
},
"product_reference": "openssl-libs-1:1.1.1c-18.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.aarch64"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.i686"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.i686",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.ppc64le"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.s390x"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.x86_64"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.1.1c-18.el8_2.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.aarch64"
},
"product_reference": "openssl-perl-1:1.1.1c-18.el8_2.aarch64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.1.1c-18.el8_2.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.ppc64le"
},
"product_reference": "openssl-perl-1:1.1.1c-18.el8_2.ppc64le",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.1.1c-18.el8_2.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.s390x"
},
"product_reference": "openssl-perl-1:1.1.1c-18.el8_2.s390x",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.1.1c-18.el8_2.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.2)",
"product_id": "BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.x86_64"
},
"product_reference": "openssl-perl-1:1.1.1c-18.el8_2.x86_64",
"relates_to_product_reference": "BaseOS-8.2.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Nokia"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3449",
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941554"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: NULL pointer dereference in signature_algorithms processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw only affects OpenSSL 1.1.1, older versions are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.src",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "RHBZ#1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3449",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-05T13:48:26+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.src",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1063"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by disabling TLS renegotiation on servers compiled with OpenSSL. It is enabled by default, but can be disabled for servers which do not require it and can be used to mitigate this flaw. Versions of httpd package shipped with Red Hat Enterprise Linux 8 have TLS renegotiation disabled by default.",
"product_ids": [
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.src",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.src",
"BaseOS-8.2.0.Z.EUS:openssl-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-debugsource-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-devel-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-libs-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.i686",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-18.el8_2.x86_64",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.aarch64",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.ppc64le",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.s390x",
"BaseOS-8.2.0.Z.EUS:openssl-perl-1:1.1.1c-18.el8_2.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: NULL pointer dereference in signature_algorithms processing"
}
]
}
RHSA-2021_1131
Vulnerability from csaf_redhat - Published: 2021-04-07 15:34 - Updated: 2024-11-22 16:40Summary
Red Hat Security Advisory: openssl security update
Severity
Important
Notes
Topic: An update for openssl is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.
Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.
Security Fix(es):
* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.
5.9 (Medium)
Affected products
Fixed
34 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.src | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.i686 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.aarch64 | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.ppc64le | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.s390x | — |
Vendor Fix
fix
Workaround
|
|
| Unresolved product id: BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.x86_64 | — |
Vendor Fix
fix
Workaround
|
Threats
Impact
Important
References
9 references
Acknowledgments
the OpenSSL project
Nokia
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for openssl is now available for Red Hat Enterprise Linux 8.1 Extended Update Support.\n\nRed Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "OpenSSL is a toolkit that implements the Secure Sockets Layer (SSL) and Transport Layer Security (TLS) protocols, as well as a full-strength general-purpose cryptography library.\n\nSecurity Fix(es):\n\n* openssl: NULL pointer dereference in signature_algorithms processing (CVE-2021-3449)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2021:1131",
"url": "https://access.redhat.com/errata/RHSA-2021:1131"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#important",
"url": "https://access.redhat.com/security/updates/classification/#important"
},
{
"category": "external",
"summary": "1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2021/rhsa-2021_1131.json"
}
],
"title": "Red Hat Security Advisory: openssl security update",
"tracking": {
"current_release_date": "2024-11-22T16:40:26+00:00",
"generator": {
"date": "2024-11-22T16:40:26+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2021:1131",
"initial_release_date": "2021-04-07T15:34:17+00:00",
"revision_history": [
{
"date": "2021-04-07T15:34:17+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2021-04-07T15:34:17+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-22T16:40:26+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product": {
"name": "Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:rhel_eus:8.1::baseos"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1c-5.el8_1.src",
"product": {
"name": "openssl-1:1.1.1c-5.el8_1.src",
"product_id": "openssl-1:1.1.1c-5.el8_1.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1c-5.el8_1?arch=src\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1c-5.el8_1.aarch64",
"product": {
"name": "openssl-1:1.1.1c-5.el8_1.aarch64",
"product_id": "openssl-1:1.1.1c-5.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1c-5.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1c-5.el8_1.aarch64",
"product": {
"name": "openssl-devel-1:1.1.1c-5.el8_1.aarch64",
"product_id": "openssl-devel-1:1.1.1c-5.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1c-5.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1c-5.el8_1.aarch64",
"product": {
"name": "openssl-libs-1:1.1.1c-5.el8_1.aarch64",
"product_id": "openssl-libs-1:1.1.1c-5.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1c-5.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.1.1c-5.el8_1.aarch64",
"product": {
"name": "openssl-perl-1:1.1.1c-5.el8_1.aarch64",
"product_id": "openssl-perl-1:1.1.1c-5.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.1.1c-5.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.aarch64",
"product": {
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.aarch64",
"product_id": "openssl-debugsource-1:1.1.1c-5.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1c-5.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"product": {
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"product_id": "openssl-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1c-5.el8_1?arch=aarch64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"product_id": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1c-5.el8_1?arch=aarch64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1c-5.el8_1.ppc64le",
"product": {
"name": "openssl-1:1.1.1c-5.el8_1.ppc64le",
"product_id": "openssl-1:1.1.1c-5.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1c-5.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1c-5.el8_1.ppc64le",
"product": {
"name": "openssl-devel-1:1.1.1c-5.el8_1.ppc64le",
"product_id": "openssl-devel-1:1.1.1c-5.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1c-5.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1c-5.el8_1.ppc64le",
"product": {
"name": "openssl-libs-1:1.1.1c-5.el8_1.ppc64le",
"product_id": "openssl-libs-1:1.1.1c-5.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1c-5.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.1.1c-5.el8_1.ppc64le",
"product": {
"name": "openssl-perl-1:1.1.1c-5.el8_1.ppc64le",
"product_id": "openssl-perl-1:1.1.1c-5.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.1.1c-5.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.ppc64le",
"product": {
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.ppc64le",
"product_id": "openssl-debugsource-1:1.1.1c-5.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1c-5.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"product": {
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"product_id": "openssl-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1c-5.el8_1?arch=ppc64le\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"product_id": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1c-5.el8_1?arch=ppc64le\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1c-5.el8_1.x86_64",
"product": {
"name": "openssl-1:1.1.1c-5.el8_1.x86_64",
"product_id": "openssl-1:1.1.1c-5.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1c-5.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1c-5.el8_1.x86_64",
"product": {
"name": "openssl-devel-1:1.1.1c-5.el8_1.x86_64",
"product_id": "openssl-devel-1:1.1.1c-5.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1c-5.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1c-5.el8_1.x86_64",
"product": {
"name": "openssl-libs-1:1.1.1c-5.el8_1.x86_64",
"product_id": "openssl-libs-1:1.1.1c-5.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1c-5.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.1.1c-5.el8_1.x86_64",
"product": {
"name": "openssl-perl-1:1.1.1c-5.el8_1.x86_64",
"product_id": "openssl-perl-1:1.1.1c-5.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.1.1c-5.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.x86_64",
"product": {
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.x86_64",
"product_id": "openssl-debugsource-1:1.1.1c-5.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1c-5.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"product": {
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"product_id": "openssl-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1c-5.el8_1?arch=x86_64\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"product_id": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1c-5.el8_1?arch=x86_64\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1c-5.el8_1.i686",
"product": {
"name": "openssl-devel-1:1.1.1c-5.el8_1.i686",
"product_id": "openssl-devel-1:1.1.1c-5.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1c-5.el8_1?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1c-5.el8_1.i686",
"product": {
"name": "openssl-libs-1:1.1.1c-5.el8_1.i686",
"product_id": "openssl-libs-1:1.1.1c-5.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1c-5.el8_1?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.i686",
"product": {
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.i686",
"product_id": "openssl-debugsource-1:1.1.1c-5.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1c-5.el8_1?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.i686",
"product": {
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.i686",
"product_id": "openssl-debuginfo-1:1.1.1c-5.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1c-5.el8_1?arch=i686\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.i686",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.i686",
"product_id": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.i686",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1c-5.el8_1?arch=i686\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "i686"
},
{
"branches": [
{
"category": "product_version",
"name": "openssl-1:1.1.1c-5.el8_1.s390x",
"product": {
"name": "openssl-1:1.1.1c-5.el8_1.s390x",
"product_id": "openssl-1:1.1.1c-5.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl@1.1.1c-5.el8_1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-devel-1:1.1.1c-5.el8_1.s390x",
"product": {
"name": "openssl-devel-1:1.1.1c-5.el8_1.s390x",
"product_id": "openssl-devel-1:1.1.1c-5.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-devel@1.1.1c-5.el8_1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-1:1.1.1c-5.el8_1.s390x",
"product": {
"name": "openssl-libs-1:1.1.1c-5.el8_1.s390x",
"product_id": "openssl-libs-1:1.1.1c-5.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs@1.1.1c-5.el8_1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-perl-1:1.1.1c-5.el8_1.s390x",
"product": {
"name": "openssl-perl-1:1.1.1c-5.el8_1.s390x",
"product_id": "openssl-perl-1:1.1.1c-5.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-perl@1.1.1c-5.el8_1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.s390x",
"product": {
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.s390x",
"product_id": "openssl-debugsource-1:1.1.1c-5.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debugsource@1.1.1c-5.el8_1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.s390x",
"product": {
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.s390x",
"product_id": "openssl-debuginfo-1:1.1.1c-5.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-debuginfo@1.1.1c-5.el8_1?arch=s390x\u0026epoch=1"
}
}
},
{
"category": "product_version",
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.s390x",
"product": {
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.s390x",
"product_id": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.s390x",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/openssl-libs-debuginfo@1.1.1c-5.el8_1?arch=s390x\u0026epoch=1"
}
}
}
],
"category": "architecture",
"name": "s390x"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1c-5.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.aarch64"
},
"product_reference": "openssl-1:1.1.1c-5.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1c-5.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.ppc64le"
},
"product_reference": "openssl-1:1.1.1c-5.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1c-5.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.s390x"
},
"product_reference": "openssl-1:1.1.1c-5.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1c-5.el8_1.src as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.src"
},
"product_reference": "openssl-1:1.1.1c-5.el8_1.src",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-1:1.1.1c-5.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.x86_64"
},
"product_reference": "openssl-1:1.1.1c-5.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.aarch64"
},
"product_reference": "openssl-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.i686"
},
"product_reference": "openssl-debuginfo-1:1.1.1c-5.el8_1.i686",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.ppc64le"
},
"product_reference": "openssl-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.s390x"
},
"product_reference": "openssl-debuginfo-1:1.1.1c-5.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debuginfo-1:1.1.1c-5.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.x86_64"
},
"product_reference": "openssl-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.aarch64"
},
"product_reference": "openssl-debugsource-1:1.1.1c-5.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.i686"
},
"product_reference": "openssl-debugsource-1:1.1.1c-5.el8_1.i686",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.ppc64le"
},
"product_reference": "openssl-debugsource-1:1.1.1c-5.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.s390x"
},
"product_reference": "openssl-debugsource-1:1.1.1c-5.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-debugsource-1:1.1.1c-5.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.x86_64"
},
"product_reference": "openssl-debugsource-1:1.1.1c-5.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1c-5.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.aarch64"
},
"product_reference": "openssl-devel-1:1.1.1c-5.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1c-5.el8_1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.i686"
},
"product_reference": "openssl-devel-1:1.1.1c-5.el8_1.i686",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1c-5.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.ppc64le"
},
"product_reference": "openssl-devel-1:1.1.1c-5.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1c-5.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.s390x"
},
"product_reference": "openssl-devel-1:1.1.1c-5.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-devel-1:1.1.1c-5.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.x86_64"
},
"product_reference": "openssl-devel-1:1.1.1c-5.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1c-5.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.aarch64"
},
"product_reference": "openssl-libs-1:1.1.1c-5.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1c-5.el8_1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.i686"
},
"product_reference": "openssl-libs-1:1.1.1c-5.el8_1.i686",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1c-5.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.ppc64le"
},
"product_reference": "openssl-libs-1:1.1.1c-5.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1c-5.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.s390x"
},
"product_reference": "openssl-libs-1:1.1.1c-5.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-1:1.1.1c-5.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.x86_64"
},
"product_reference": "openssl-libs-1:1.1.1c-5.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.aarch64"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.i686 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.i686"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.i686",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.ppc64le"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.s390x"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.x86_64"
},
"product_reference": "openssl-libs-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.1.1c-5.el8_1.aarch64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.aarch64"
},
"product_reference": "openssl-perl-1:1.1.1c-5.el8_1.aarch64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.1.1c-5.el8_1.ppc64le as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.ppc64le"
},
"product_reference": "openssl-perl-1:1.1.1c-5.el8_1.ppc64le",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.1.1c-5.el8_1.s390x as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.s390x"
},
"product_reference": "openssl-perl-1:1.1.1c-5.el8_1.s390x",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openssl-perl-1:1.1.1c-5.el8_1.x86_64 as a component of Red Hat Enterprise Linux BaseOS EUS (v. 8.1)",
"product_id": "BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.x86_64"
},
"product_reference": "openssl-perl-1:1.1.1c-5.el8_1.x86_64",
"relates_to_product_reference": "BaseOS-8.1.0.Z.EUS"
}
]
},
"vulnerabilities": [
{
"acknowledgments": [
{
"names": [
"the OpenSSL project"
]
},
{
"names": [
"Nokia"
],
"summary": "Acknowledged by upstream."
}
],
"cve": "CVE-2021-3449",
"discovery_date": "2021-03-22T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1941554"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in openssl. A server crash and denial of service attack could occur if a client sends a TLSv1.2 renegotiation ClientHello and omits the signature_algorithms extension but includes a signature_algorithms_cert extension. The highest threat from this vulnerability is to system availability.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "openssl: NULL pointer dereference in signature_algorithms processing",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw only affects OpenSSL 1.1.1, older versions are not affected.",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.src",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.x86_64"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2021-3449"
},
{
"category": "external",
"summary": "RHBZ#1941554",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1941554"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2021-3449",
"url": "https://www.cve.org/CVERecord?id=CVE-2021-3449"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-3449"
},
{
"category": "external",
"summary": "https://www.openssl.org/news/secadv/20210325.txt",
"url": "https://www.openssl.org/news/secadv/20210325.txt"
}
],
"release_date": "2021-03-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2021-04-07T15:34:17+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258\n\nFor the update to take effect, all services linked to the OpenSSL library must be restarted, or the system rebooted.",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.src",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.x86_64"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2021:1131"
},
{
"category": "workaround",
"details": "This flaw can be mitigated by disabling TLS renegotiation on servers compiled with OpenSSL. It is enabled by default, but can be disabled for servers which do not require it and can be used to mitigate this flaw. Versions of httpd package shipped with Red Hat Enterprise Linux 8 have TLS renegotiation disabled by default.",
"product_ids": [
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.src",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "HIGH",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 5.9,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.src",
"BaseOS-8.1.0.Z.EUS:openssl-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-debugsource-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-devel-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-libs-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.i686",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-libs-debuginfo-1:1.1.1c-5.el8_1.x86_64",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.aarch64",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.ppc64le",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.s390x",
"BaseOS-8.1.0.Z.EUS:openssl-perl-1:1.1.1c-5.el8_1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"details": "Important"
}
],
"title": "openssl: NULL pointer dereference in signature_algorithms processing"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…