Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-35942 (GCVE-0-2023-35942)
Vulnerability from cvelistv5 – Published: 2023-07-25 18:24 – Updated: 2024-10-24 18:01
VLAI
EPSS
Title
Envoy's gRPC access log crash caused by the listener draining
Summary
Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, gRPC access loggers using listener's global scope can cause a `use-after-free` crash when the listener is drained. Versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12 have a fix for this issue. As a workaround, disable gRPC access log or stop listener update.
Severity
6.5 (Medium)
SSVC
Exploitation: poc
Automatable: no
Technical Impact: partial
CISA Coordinator (v2.0.3)
CWE
- CWE-416 - Use After Free
Assigner
References
1 reference
| URL | Tags |
|---|---|
| https://github.com/envoyproxy/envoy/security/advi… | x_refsource_CONFIRM |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| envoyproxy | envoy |
Affected:
>= 1.26.0, < 1.26.4
Affected: >= 1.25.0, < 1.25.9 Affected: >= 1.24.0, < 1.24.10 Affected: < 1.23.12 |
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-02T16:37:40.039Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-69vr-g55c-v2v4",
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-69vr-g55c-v2v4"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-35942",
"options": [
{
"Exploitation": "poc"
},
{
"Automatable": "no"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-10-24T18:00:49.771065Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-10-24T18:01:03.748Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "envoy",
"vendor": "envoyproxy",
"versions": [
{
"status": "affected",
"version": "\u003e= 1.26.0, \u003c 1.26.4"
},
{
"status": "affected",
"version": "\u003e= 1.25.0, \u003c 1.25.9"
},
{
"status": "affected",
"version": "\u003e= 1.24.0, \u003c 1.24.10"
},
{
"status": "affected",
"version": "\u003c 1.23.12"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, gRPC access loggers using listener\u0027s global scope can cause a `use-after-free` crash when the listener is drained. Versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12 have a fix for this issue. As a workaround, disable gRPC access log or stop listener update."
}
],
"metrics": [
{
"cvssV3_1": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-416",
"description": "CWE-416: Use After Free",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2023-07-25T18:24:11.613Z",
"orgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"shortName": "GitHub_M"
},
"references": [
{
"name": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-69vr-g55c-v2v4",
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/envoyproxy/envoy/security/advisories/GHSA-69vr-g55c-v2v4"
}
],
"source": {
"advisory": "GHSA-69vr-g55c-v2v4",
"discovery": "UNKNOWN"
},
"title": "Envoy\u0027s gRPC access log crash caused by the listener draining"
}
},
"cveMetadata": {
"assignerOrgId": "a0819718-46f1-4df5-94e2-005712e83aaa",
"assignerShortName": "GitHub_M",
"cveId": "CVE-2023-35942",
"datePublished": "2023-07-25T18:24:11.613Z",
"dateReserved": "2023-06-20T14:02:45.596Z",
"dateUpdated": "2024-10-24T18:01:03.748Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2023-35942",
"date": "2026-06-07",
"epss": "0.00023",
"percentile": "0.06771"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.23.0\", \"versionEndExcluding\": \"1.23.12\", \"matchCriteriaId\": \"588736F6-2FDC-4CF7-AFFA-7CFE16ED6EC6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.24.0\", \"versionEndExcluding\": \"1.24.10\", \"matchCriteriaId\": \"D8412E60-1C2F-4764-94F5-563FAA297466\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.25.0\", \"versionEndExcluding\": \"1.25.9\", \"matchCriteriaId\": \"0EC8FEB8-BB13-443C-8905-30B03F8F52E6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"1.26.0\", \"versionEndExcluding\": \"1.26.4\", \"matchCriteriaId\": \"DA35F763-2810-4231-B5A9-93310BF7B765\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, gRPC access loggers using listener\u0027s global scope can cause a `use-after-free` crash when the listener is drained. Versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12 have a fix for this issue. As a workaround, disable gRPC access log or stop listener update.\"}]",
"id": "CVE-2023-35942",
"lastModified": "2024-11-21T08:09:01.420",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"security-advisories@github.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.6}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.6}]}",
"published": "2023-07-25T19:15:11.050",
"references": "[{\"url\": \"https://github.com/envoyproxy/envoy/security/advisories/GHSA-69vr-g55c-v2v4\", \"source\": \"security-advisories@github.com\", \"tags\": [\"Exploit\", \"Third Party Advisory\"]}, {\"url\": \"https://github.com/envoyproxy/envoy/security/advisories/GHSA-69vr-g55c-v2v4\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Exploit\", \"Third Party Advisory\"]}]",
"sourceIdentifier": "security-advisories@github.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"security-advisories@github.com\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-416\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-35942\",\"sourceIdentifier\":\"security-advisories@github.com\",\"published\":\"2023-07-25T19:15:11.050\",\"lastModified\":\"2024-11-21T08:09:01.420\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, gRPC access loggers using listener\u0027s global scope can cause a `use-after-free` crash when the listener is drained. Versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12 have a fix for this issue. As a workaround, disable gRPC access log or stop listener update.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"security-advisories@github.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.23.0\",\"versionEndExcluding\":\"1.23.12\",\"matchCriteriaId\":\"588736F6-2FDC-4CF7-AFFA-7CFE16ED6EC6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.24.0\",\"versionEndExcluding\":\"1.24.10\",\"matchCriteriaId\":\"D8412E60-1C2F-4764-94F5-563FAA297466\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.25.0\",\"versionEndExcluding\":\"1.25.9\",\"matchCriteriaId\":\"0EC8FEB8-BB13-443C-8905-30B03F8F52E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:envoyproxy:envoy:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.26.0\",\"versionEndExcluding\":\"1.26.4\",\"matchCriteriaId\":\"DA35F763-2810-4231-B5A9-93310BF7B765\"}]}]}],\"references\":[{\"url\":\"https://github.com/envoyproxy/envoy/security/advisories/GHSA-69vr-g55c-v2v4\",\"source\":\"security-advisories@github.com\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/envoyproxy/envoy/security/advisories/GHSA-69vr-g55c-v2v4\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://github.com/envoyproxy/envoy/security/advisories/GHSA-69vr-g55c-v2v4\", \"name\": \"https://github.com/envoyproxy/envoy/security/advisories/GHSA-69vr-g55c-v2v4\", \"tags\": [\"x_refsource_CONFIRM\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T16:37:40.039Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-35942\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"poc\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-10-24T18:00:49.771065Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-10-24T18:00:56.675Z\"}}], \"cna\": {\"title\": \"Envoy\u0027s gRPC access log crash caused by the listener draining\", \"source\": {\"advisory\": \"GHSA-69vr-g55c-v2v4\", \"discovery\": \"UNKNOWN\"}, \"metrics\": [{\"cvssV3_1\": {\"scope\": \"UNCHANGED\", \"version\": \"3.1\", \"baseScore\": 6.5, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"MEDIUM\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"LOW\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"envoyproxy\", \"product\": \"envoy\", \"versions\": [{\"status\": \"affected\", \"version\": \"\u003e= 1.26.0, \u003c 1.26.4\"}, {\"status\": \"affected\", \"version\": \"\u003e= 1.25.0, \u003c 1.25.9\"}, {\"status\": \"affected\", \"version\": \"\u003e= 1.24.0, \u003c 1.24.10\"}, {\"status\": \"affected\", \"version\": \"\u003c 1.23.12\"}]}], \"references\": [{\"url\": \"https://github.com/envoyproxy/envoy/security/advisories/GHSA-69vr-g55c-v2v4\", \"name\": \"https://github.com/envoyproxy/envoy/security/advisories/GHSA-69vr-g55c-v2v4\", \"tags\": [\"x_refsource_CONFIRM\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"Envoy is an open source edge and service proxy designed for cloud-native applications. Prior to versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12, gRPC access loggers using listener\u0027s global scope can cause a `use-after-free` crash when the listener is drained. Versions 1.27.0, 1.26.4, 1.25.9, 1.24.10, and 1.23.12 have a fix for this issue. As a workaround, disable gRPC access log or stop listener update.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-416\", \"description\": \"CWE-416: Use After Free\"}]}], \"providerMetadata\": {\"orgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"shortName\": \"GitHub_M\", \"dateUpdated\": \"2023-07-25T18:24:11.613Z\"}}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-35942\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-10-24T18:01:03.748Z\", \"dateReserved\": \"2023-06-20T14:02:45.596Z\", \"assignerOrgId\": \"a0819718-46f1-4df5-94e2-005712e83aaa\", \"datePublished\": \"2023-07-25T18:24:11.613Z\", \"assignerShortName\": \"GitHub_M\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
RHSA-2023_5174
Vulnerability from csaf_redhat - Published: 2023-09-14 17:33 - Updated: 2024-11-23 00:01Summary
Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.4.3 security update
Severity
Moderate
Notes
Topic: Red Hat OpenShift Service Mesh Containers for 2.4.3
Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: Red Hat OpenShift Service Mesh is the Red Hat distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation.
This advisory covers container images for the release.
Security Fix(es):
* envoy: gRPC access log crash caused by the listener draining (CVE-2023-35942)
For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
A flaw was found in Envoy, where gRPC access loggers using the listener's global scope can cause a use-after-free crash when the listener is drained. This issue can be triggered by a listener discovery service (LDS) update with the same gRPC access log configuration.
6.5 (Medium)
Affected products
Fixed
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:356a674c259edaa6c8699e1459c168cb97d2b400b633993818abed80f78cb455_arm64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:45c30dca9e3f5687a3f333d29daacc8548f3f733981bc17f58c1411d844991ec_s390x | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:be864a665faeb9f907667061792a91ba196ca38bbc634e225a04ad1da0e243c5_amd64 | — |
Vendor Fix
fix
|
|
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:c13a1e17ed0549f7ce739f789821ff793a61e2d23b697fb4a956dd08102be9bd_ppc64le | — |
Vendor Fix
fix
|
Known not affected
32 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:1d0373ca090a91b1a26add051c668b4db7986db066ba36f792b94731d9d63a22_s390x | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:6bc7fe98083324fb541ad4b02866ffee094721fc51ea0410041902ca1d8fc010_arm64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:6def5c25ebf96a413a8b39a1f89525c9285c47015c33937c05f17da4751d7053_ppc64le | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:f039122ba1713d257d600c686fc1ab0989eeb8cdff81a3f0cb4b3c07c9f68864_amd64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:15400b87ddb1e5c33554278802d57b8422aa88de29a3c64aa9b4452d450a87a6_s390x | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:2fa3223cd2ce127dcf1f2f374647671e88b0648420e03f68c2bc93103020e50b_amd64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:b033af42b9c4b0c688f7af4fa98d57e2f66f973ab8627c08527eae8f9c58f892_arm64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:c20e558ab91554c579178f9088f7a691acb557b2fc7528cf8e0768852c57e5b4_ppc64le | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:1a7d34f4ae3c3629c1840491379145fa0553f53c4d1dcdcbaceaf3c536d815b6_arm64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:3b89915f208b61fdc8630e3ad54050a60576b40331eac8d88fe432aa5f667021_ppc64le | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:c9291488f6c8d374af2bd4b144ded86507e0c89c0f41be47206d9565f670db12_s390x | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:e14e1b3d5cf1dec91ee2621c2e1b80401c30d349434bd26fb8a276cc0224942e_amd64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:036cf16e38c98408aa8de30da0dbc159902a9e12c5a7463707436e2fd94e6215_amd64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:72b732762519ad5ec504166b58a15dc5974f6250fc565f16dce98e3c9dfa0f3a_arm64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:77c14339c06bf33f56cb7a33a1812186b3c025c6234d8574f8eafb0b9dee7072_ppc64le | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:fed31e6b657f93e080acc90fd05c5bcaf79170eecfd0fd35a7396a6d679866f6_s390x | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:047d78c2e420a442611554fd22684bd1138c2599817741323773e314c43008dc_s390x | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:6c4fbfe75338e0715d02ba69388ad8c492807962222ff0e8d9ca9ebb9b7fc214_amd64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:b01d3ef882f26764a5cfd2375bbe3e42778ca80158264e4e45297ebe0adedeb7_arm64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:fa63641d22e2701dd06a96e09479e8d313df8d479bc1bbdbd230851eed47717a_ppc64le | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:93e94afa56baa1c81b81d935e62fd0c568d65a3ed5130e1d8ddf265d93c906d7_arm64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:956e949073b90ed152c8041380bd3c9fdc3865c593f25fb063cf7afa763e51d8_s390x | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:a9d8d6b1475eb8ab1aa61d7a76ec05ddccf3f6e0e511d22a3fba308eaf5a7504_amd64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:d15b49cef4c2b96beec787e6a122cbbf567280cc37c30c6953f19a9e962b52c9_ppc64le | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:0b5dbe4ac53ef0a926d2f8438fdd64e148585974a9d436e78cdb7615211e8a0c_arm64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:4c2e2efc201a2cdc167071e6001c52404ae15ced1b777cb1462c79c6b1cda0bd_ppc64le | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:88e4a906a7337289043e01fc6fcbc68de65fabf2ccbe10aa166fda3488847c4d_s390x | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:b75907822356c05807fa0939775c74b428cf995b03f04bb298b143ddcadffc28_amd64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:12a1e1ef1210f3cd50f0c82a0ce02101c188edde8e713d0dde88ea6f1396b479_ppc64le | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:3a75674bd2adf66e1aae0461c0c89681b453dc6b5fa4496f090252cee2300136_arm64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:495eb5b0225e22d9ce2c8b71584513b0c1323ec208d2022735aac6d6397a68ad_amd64 | — | ||
| Unresolved product id: 8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:ce5904e6563fef477ed2d7fd8fb5d98843ed3304d5bfb0a898ca1e8553aa7516_s390x | — |
Threats
Impact
Moderate
References
17 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Red Hat OpenShift Service Mesh Containers for 2.4.3\n\nRed Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "Red Hat OpenShift Service Mesh is the Red Hat distribution of the Istio service mesh project, tailored for installation into an on-premise OpenShift Container Platform installation.\n\nThis advisory covers container images for the release.\n\nSecurity Fix(es):\n\n* envoy: gRPC access log crash caused by the listener draining (CVE-2023-35942)\n\nFor more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2023:5174",
"url": "https://access.redhat.com/errata/RHSA-2023:5174"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#moderate",
"url": "https://access.redhat.com/security/updates/classification/#moderate"
},
{
"category": "external",
"summary": "2217978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2217978"
},
{
"category": "external",
"summary": "OSSM-1182",
"url": "https://issues.redhat.com/browse/OSSM-1182"
},
{
"category": "external",
"summary": "OSSM-3508",
"url": "https://issues.redhat.com/browse/OSSM-3508"
},
{
"category": "external",
"summary": "OSSM-3979",
"url": "https://issues.redhat.com/browse/OSSM-3979"
},
{
"category": "external",
"summary": "OSSM-4247",
"url": "https://issues.redhat.com/browse/OSSM-4247"
},
{
"category": "external",
"summary": "OSSM-4461",
"url": "https://issues.redhat.com/browse/OSSM-4461"
},
{
"category": "external",
"summary": "OSSM-4491",
"url": "https://issues.redhat.com/browse/OSSM-4491"
},
{
"category": "external",
"summary": "OSSM-4559",
"url": "https://issues.redhat.com/browse/OSSM-4559"
},
{
"category": "external",
"summary": "OSSM-4627",
"url": "https://issues.redhat.com/browse/OSSM-4627"
},
{
"category": "external",
"summary": "OSSM-4705",
"url": "https://issues.redhat.com/browse/OSSM-4705"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2023/rhsa-2023_5174.json"
}
],
"title": "Red Hat Security Advisory: Red Hat OpenShift Service Mesh Containers for 2.4.3 security update",
"tracking": {
"current_release_date": "2024-11-23T00:01:47+00:00",
"generator": {
"date": "2024-11-23T00:01:47+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.2.1"
}
},
"id": "RHSA-2023:5174",
"initial_release_date": "2023-09-14T17:33:40+00:00",
"revision_history": [
{
"date": "2023-09-14T17:33:40+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2023-09-14T17:33:40+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2024-11-23T00:01:47+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "RHOSSM 2.4 for RHEL 8",
"product": {
"name": "RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:service_mesh:2.4::el8"
}
}
}
],
"category": "product_family",
"name": "Red Hat OpenShift Service Mesh"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:b033af42b9c4b0c688f7af4fa98d57e2f66f973ab8627c08527eae8f9c58f892_arm64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:b033af42b9c4b0c688f7af4fa98d57e2f66f973ab8627c08527eae8f9c58f892_arm64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:b033af42b9c4b0c688f7af4fa98d57e2f66f973ab8627c08527eae8f9c58f892_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:b033af42b9c4b0c688f7af4fa98d57e2f66f973ab8627c08527eae8f9c58f892?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.4.3-9"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:6bc7fe98083324fb541ad4b02866ffee094721fc51ea0410041902ca1d8fc010_arm64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:6bc7fe98083324fb541ad4b02866ffee094721fc51ea0410041902ca1d8fc010_arm64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:6bc7fe98083324fb541ad4b02866ffee094721fc51ea0410041902ca1d8fc010_arm64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:6bc7fe98083324fb541ad4b02866ffee094721fc51ea0410041902ca1d8fc010?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.4.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:93e94afa56baa1c81b81d935e62fd0c568d65a3ed5130e1d8ddf265d93c906d7_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:93e94afa56baa1c81b81d935e62fd0c568d65a3ed5130e1d8ddf265d93c906d7_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:93e94afa56baa1c81b81d935e62fd0c568d65a3ed5130e1d8ddf265d93c906d7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:93e94afa56baa1c81b81d935e62fd0c568d65a3ed5130e1d8ddf265d93c906d7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.65.8-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:b01d3ef882f26764a5cfd2375bbe3e42778ca80158264e4e45297ebe0adedeb7_arm64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:b01d3ef882f26764a5cfd2375bbe3e42778ca80158264e4e45297ebe0adedeb7_arm64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:b01d3ef882f26764a5cfd2375bbe3e42778ca80158264e4e45297ebe0adedeb7_arm64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:b01d3ef882f26764a5cfd2375bbe3e42778ca80158264e4e45297ebe0adedeb7?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.65.8-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:1a7d34f4ae3c3629c1840491379145fa0553f53c4d1dcdcbaceaf3c536d815b6_arm64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:1a7d34f4ae3c3629c1840491379145fa0553f53c4d1dcdcbaceaf3c536d815b6_arm64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:1a7d34f4ae3c3629c1840491379145fa0553f53c4d1dcdcbaceaf3c536d815b6_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:1a7d34f4ae3c3629c1840491379145fa0553f53c4d1dcdcbaceaf3c536d815b6?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.4.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:72b732762519ad5ec504166b58a15dc5974f6250fc565f16dce98e3c9dfa0f3a_arm64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:72b732762519ad5ec504166b58a15dc5974f6250fc565f16dce98e3c9dfa0f3a_arm64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:72b732762519ad5ec504166b58a15dc5974f6250fc565f16dce98e3c9dfa0f3a_arm64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:72b732762519ad5ec504166b58a15dc5974f6250fc565f16dce98e3c9dfa0f3a?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.4.3-13"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:0b5dbe4ac53ef0a926d2f8438fdd64e148585974a9d436e78cdb7615211e8a0c_arm64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:0b5dbe4ac53ef0a926d2f8438fdd64e148585974a9d436e78cdb7615211e8a0c_arm64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:0b5dbe4ac53ef0a926d2f8438fdd64e148585974a9d436e78cdb7615211e8a0c_arm64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:0b5dbe4ac53ef0a926d2f8438fdd64e148585974a9d436e78cdb7615211e8a0c?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.4.3-9"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:356a674c259edaa6c8699e1459c168cb97d2b400b633993818abed80f78cb455_arm64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:356a674c259edaa6c8699e1459c168cb97d2b400b633993818abed80f78cb455_arm64",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:356a674c259edaa6c8699e1459c168cb97d2b400b633993818abed80f78cb455_arm64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:356a674c259edaa6c8699e1459c168cb97d2b400b633993818abed80f78cb455?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.4.3-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:3a75674bd2adf66e1aae0461c0c89681b453dc6b5fa4496f090252cee2300136_arm64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:3a75674bd2adf66e1aae0461c0c89681b453dc6b5fa4496f090252cee2300136_arm64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:3a75674bd2adf66e1aae0461c0c89681b453dc6b5fa4496f090252cee2300136_arm64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:3a75674bd2adf66e1aae0461c0c89681b453dc6b5fa4496f090252cee2300136?arch=arm64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.4.3-2"
}
}
}
],
"category": "architecture",
"name": "arm64"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:c20e558ab91554c579178f9088f7a691acb557b2fc7528cf8e0768852c57e5b4_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:c20e558ab91554c579178f9088f7a691acb557b2fc7528cf8e0768852c57e5b4_ppc64le",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:c20e558ab91554c579178f9088f7a691acb557b2fc7528cf8e0768852c57e5b4_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:c20e558ab91554c579178f9088f7a691acb557b2fc7528cf8e0768852c57e5b4?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.4.3-9"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:6def5c25ebf96a413a8b39a1f89525c9285c47015c33937c05f17da4751d7053_ppc64le",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:6def5c25ebf96a413a8b39a1f89525c9285c47015c33937c05f17da4751d7053_ppc64le",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:6def5c25ebf96a413a8b39a1f89525c9285c47015c33937c05f17da4751d7053_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:6def5c25ebf96a413a8b39a1f89525c9285c47015c33937c05f17da4751d7053?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.4.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:d15b49cef4c2b96beec787e6a122cbbf567280cc37c30c6953f19a9e962b52c9_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:d15b49cef4c2b96beec787e6a122cbbf567280cc37c30c6953f19a9e962b52c9_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:d15b49cef4c2b96beec787e6a122cbbf567280cc37c30c6953f19a9e962b52c9_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:d15b49cef4c2b96beec787e6a122cbbf567280cc37c30c6953f19a9e962b52c9?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.65.8-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:fa63641d22e2701dd06a96e09479e8d313df8d479bc1bbdbd230851eed47717a_ppc64le",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:fa63641d22e2701dd06a96e09479e8d313df8d479bc1bbdbd230851eed47717a_ppc64le",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:fa63641d22e2701dd06a96e09479e8d313df8d479bc1bbdbd230851eed47717a_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:fa63641d22e2701dd06a96e09479e8d313df8d479bc1bbdbd230851eed47717a?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.65.8-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:3b89915f208b61fdc8630e3ad54050a60576b40331eac8d88fe432aa5f667021_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:3b89915f208b61fdc8630e3ad54050a60576b40331eac8d88fe432aa5f667021_ppc64le",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:3b89915f208b61fdc8630e3ad54050a60576b40331eac8d88fe432aa5f667021_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:3b89915f208b61fdc8630e3ad54050a60576b40331eac8d88fe432aa5f667021?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.4.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:77c14339c06bf33f56cb7a33a1812186b3c025c6234d8574f8eafb0b9dee7072_ppc64le",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:77c14339c06bf33f56cb7a33a1812186b3c025c6234d8574f8eafb0b9dee7072_ppc64le",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:77c14339c06bf33f56cb7a33a1812186b3c025c6234d8574f8eafb0b9dee7072_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:77c14339c06bf33f56cb7a33a1812186b3c025c6234d8574f8eafb0b9dee7072?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.4.3-13"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:4c2e2efc201a2cdc167071e6001c52404ae15ced1b777cb1462c79c6b1cda0bd_ppc64le",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:4c2e2efc201a2cdc167071e6001c52404ae15ced1b777cb1462c79c6b1cda0bd_ppc64le",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:4c2e2efc201a2cdc167071e6001c52404ae15ced1b777cb1462c79c6b1cda0bd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:4c2e2efc201a2cdc167071e6001c52404ae15ced1b777cb1462c79c6b1cda0bd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.4.3-9"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c13a1e17ed0549f7ce739f789821ff793a61e2d23b697fb4a956dd08102be9bd_ppc64le",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c13a1e17ed0549f7ce739f789821ff793a61e2d23b697fb4a956dd08102be9bd_ppc64le",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:c13a1e17ed0549f7ce739f789821ff793a61e2d23b697fb4a956dd08102be9bd_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:c13a1e17ed0549f7ce739f789821ff793a61e2d23b697fb4a956dd08102be9bd?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.4.3-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:12a1e1ef1210f3cd50f0c82a0ce02101c188edde8e713d0dde88ea6f1396b479_ppc64le",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:12a1e1ef1210f3cd50f0c82a0ce02101c188edde8e713d0dde88ea6f1396b479_ppc64le",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:12a1e1ef1210f3cd50f0c82a0ce02101c188edde8e713d0dde88ea6f1396b479_ppc64le",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:12a1e1ef1210f3cd50f0c82a0ce02101c188edde8e713d0dde88ea6f1396b479?arch=ppc64le\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.4.3-2"
}
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:15400b87ddb1e5c33554278802d57b8422aa88de29a3c64aa9b4452d450a87a6_s390x",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:15400b87ddb1e5c33554278802d57b8422aa88de29a3c64aa9b4452d450a87a6_s390x",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:15400b87ddb1e5c33554278802d57b8422aa88de29a3c64aa9b4452d450a87a6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:15400b87ddb1e5c33554278802d57b8422aa88de29a3c64aa9b4452d450a87a6?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.4.3-9"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:1d0373ca090a91b1a26add051c668b4db7986db066ba36f792b94731d9d63a22_s390x",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:1d0373ca090a91b1a26add051c668b4db7986db066ba36f792b94731d9d63a22_s390x",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:1d0373ca090a91b1a26add051c668b4db7986db066ba36f792b94731d9d63a22_s390x",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:1d0373ca090a91b1a26add051c668b4db7986db066ba36f792b94731d9d63a22?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.4.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:956e949073b90ed152c8041380bd3c9fdc3865c593f25fb063cf7afa763e51d8_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:956e949073b90ed152c8041380bd3c9fdc3865c593f25fb063cf7afa763e51d8_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:956e949073b90ed152c8041380bd3c9fdc3865c593f25fb063cf7afa763e51d8_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:956e949073b90ed152c8041380bd3c9fdc3865c593f25fb063cf7afa763e51d8?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.65.8-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:047d78c2e420a442611554fd22684bd1138c2599817741323773e314c43008dc_s390x",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:047d78c2e420a442611554fd22684bd1138c2599817741323773e314c43008dc_s390x",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:047d78c2e420a442611554fd22684bd1138c2599817741323773e314c43008dc_s390x",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:047d78c2e420a442611554fd22684bd1138c2599817741323773e314c43008dc?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.65.8-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c9291488f6c8d374af2bd4b144ded86507e0c89c0f41be47206d9565f670db12_s390x",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c9291488f6c8d374af2bd4b144ded86507e0c89c0f41be47206d9565f670db12_s390x",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c9291488f6c8d374af2bd4b144ded86507e0c89c0f41be47206d9565f670db12_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:c9291488f6c8d374af2bd4b144ded86507e0c89c0f41be47206d9565f670db12?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.4.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:fed31e6b657f93e080acc90fd05c5bcaf79170eecfd0fd35a7396a6d679866f6_s390x",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:fed31e6b657f93e080acc90fd05c5bcaf79170eecfd0fd35a7396a6d679866f6_s390x",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:fed31e6b657f93e080acc90fd05c5bcaf79170eecfd0fd35a7396a6d679866f6_s390x",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:fed31e6b657f93e080acc90fd05c5bcaf79170eecfd0fd35a7396a6d679866f6?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.4.3-13"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:88e4a906a7337289043e01fc6fcbc68de65fabf2ccbe10aa166fda3488847c4d_s390x",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:88e4a906a7337289043e01fc6fcbc68de65fabf2ccbe10aa166fda3488847c4d_s390x",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:88e4a906a7337289043e01fc6fcbc68de65fabf2ccbe10aa166fda3488847c4d_s390x",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:88e4a906a7337289043e01fc6fcbc68de65fabf2ccbe10aa166fda3488847c4d?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.4.3-9"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:45c30dca9e3f5687a3f333d29daacc8548f3f733981bc17f58c1411d844991ec_s390x",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:45c30dca9e3f5687a3f333d29daacc8548f3f733981bc17f58c1411d844991ec_s390x",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:45c30dca9e3f5687a3f333d29daacc8548f3f733981bc17f58c1411d844991ec_s390x",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:45c30dca9e3f5687a3f333d29daacc8548f3f733981bc17f58c1411d844991ec?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.4.3-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:ce5904e6563fef477ed2d7fd8fb5d98843ed3304d5bfb0a898ca1e8553aa7516_s390x",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:ce5904e6563fef477ed2d7fd8fb5d98843ed3304d5bfb0a898ca1e8553aa7516_s390x",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:ce5904e6563fef477ed2d7fd8fb5d98843ed3304d5bfb0a898ca1e8553aa7516_s390x",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:ce5904e6563fef477ed2d7fd8fb5d98843ed3304d5bfb0a898ca1e8553aa7516?arch=s390x\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.4.3-2"
}
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2fa3223cd2ce127dcf1f2f374647671e88b0648420e03f68c2bc93103020e50b_amd64",
"product": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2fa3223cd2ce127dcf1f2f374647671e88b0648420e03f68c2bc93103020e50b_amd64",
"product_id": "openshift-service-mesh/istio-cni-rhel8@sha256:2fa3223cd2ce127dcf1f2f374647671e88b0648420e03f68c2bc93103020e50b_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-cni-rhel8@sha256:2fa3223cd2ce127dcf1f2f374647671e88b0648420e03f68c2bc93103020e50b?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-cni-rhel8\u0026tag=2.4.3-9"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/grafana-rhel8@sha256:f039122ba1713d257d600c686fc1ab0989eeb8cdff81a3f0cb4b3c07c9f68864_amd64",
"product": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:f039122ba1713d257d600c686fc1ab0989eeb8cdff81a3f0cb4b3c07c9f68864_amd64",
"product_id": "openshift-service-mesh/grafana-rhel8@sha256:f039122ba1713d257d600c686fc1ab0989eeb8cdff81a3f0cb4b3c07c9f68864_amd64",
"product_identification_helper": {
"purl": "pkg:oci/grafana-rhel8@sha256:f039122ba1713d257d600c686fc1ab0989eeb8cdff81a3f0cb4b3c07c9f68864?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/grafana-rhel8\u0026tag=2.4.3-2"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8@sha256:a9d8d6b1475eb8ab1aa61d7a76ec05ddccf3f6e0e511d22a3fba308eaf5a7504_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:a9d8d6b1475eb8ab1aa61d7a76ec05ddccf3f6e0e511d22a3fba308eaf5a7504_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8@sha256:a9d8d6b1475eb8ab1aa61d7a76ec05ddccf3f6e0e511d22a3fba308eaf5a7504_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8@sha256:a9d8d6b1475eb8ab1aa61d7a76ec05ddccf3f6e0e511d22a3fba308eaf5a7504?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8\u0026tag=1.65.8-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:6c4fbfe75338e0715d02ba69388ad8c492807962222ff0e8d9ca9ebb9b7fc214_amd64",
"product": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:6c4fbfe75338e0715d02ba69388ad8c492807962222ff0e8d9ca9ebb9b7fc214_amd64",
"product_id": "openshift-service-mesh/kiali-rhel8-operator@sha256:6c4fbfe75338e0715d02ba69388ad8c492807962222ff0e8d9ca9ebb9b7fc214_amd64",
"product_identification_helper": {
"purl": "pkg:oci/kiali-rhel8-operator@sha256:6c4fbfe75338e0715d02ba69388ad8c492807962222ff0e8d9ca9ebb9b7fc214?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/kiali-rhel8-operator\u0026tag=1.65.8-1"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:e14e1b3d5cf1dec91ee2621c2e1b80401c30d349434bd26fb8a276cc0224942e_amd64",
"product": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:e14e1b3d5cf1dec91ee2621c2e1b80401c30d349434bd26fb8a276cc0224942e_amd64",
"product_id": "openshift-service-mesh/istio-must-gather-rhel8@sha256:e14e1b3d5cf1dec91ee2621c2e1b80401c30d349434bd26fb8a276cc0224942e_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-must-gather-rhel8@sha256:e14e1b3d5cf1dec91ee2621c2e1b80401c30d349434bd26fb8a276cc0224942e?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-must-gather-rhel8\u0026tag=2.4.3-5"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:036cf16e38c98408aa8de30da0dbc159902a9e12c5a7463707436e2fd94e6215_amd64",
"product": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:036cf16e38c98408aa8de30da0dbc159902a9e12c5a7463707436e2fd94e6215_amd64",
"product_id": "openshift-service-mesh/istio-rhel8-operator@sha256:036cf16e38c98408aa8de30da0dbc159902a9e12c5a7463707436e2fd94e6215_amd64",
"product_identification_helper": {
"purl": "pkg:oci/istio-rhel8-operator@sha256:036cf16e38c98408aa8de30da0dbc159902a9e12c5a7463707436e2fd94e6215?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/istio-rhel8-operator\u0026tag=2.4.3-13"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/pilot-rhel8@sha256:b75907822356c05807fa0939775c74b428cf995b03f04bb298b143ddcadffc28_amd64",
"product": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:b75907822356c05807fa0939775c74b428cf995b03f04bb298b143ddcadffc28_amd64",
"product_id": "openshift-service-mesh/pilot-rhel8@sha256:b75907822356c05807fa0939775c74b428cf995b03f04bb298b143ddcadffc28_amd64",
"product_identification_helper": {
"purl": "pkg:oci/pilot-rhel8@sha256:b75907822356c05807fa0939775c74b428cf995b03f04bb298b143ddcadffc28?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/pilot-rhel8\u0026tag=2.4.3-9"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:be864a665faeb9f907667061792a91ba196ca38bbc634e225a04ad1da0e243c5_amd64",
"product": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:be864a665faeb9f907667061792a91ba196ca38bbc634e225a04ad1da0e243c5_amd64",
"product_id": "openshift-service-mesh/proxyv2-rhel8@sha256:be864a665faeb9f907667061792a91ba196ca38bbc634e225a04ad1da0e243c5_amd64",
"product_identification_helper": {
"purl": "pkg:oci/proxyv2-rhel8@sha256:be864a665faeb9f907667061792a91ba196ca38bbc634e225a04ad1da0e243c5?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/proxyv2-rhel8\u0026tag=2.4.3-7"
}
}
},
{
"category": "product_version",
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:495eb5b0225e22d9ce2c8b71584513b0c1323ec208d2022735aac6d6397a68ad_amd64",
"product": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:495eb5b0225e22d9ce2c8b71584513b0c1323ec208d2022735aac6d6397a68ad_amd64",
"product_id": "openshift-service-mesh/ratelimit-rhel8@sha256:495eb5b0225e22d9ce2c8b71584513b0c1323ec208d2022735aac6d6397a68ad_amd64",
"product_identification_helper": {
"purl": "pkg:oci/ratelimit-rhel8@sha256:495eb5b0225e22d9ce2c8b71584513b0c1323ec208d2022735aac6d6397a68ad?arch=amd64\u0026repository_url=registry.redhat.io/openshift-service-mesh/ratelimit-rhel8\u0026tag=2.4.3-2"
}
}
}
],
"category": "architecture",
"name": "amd64"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:1d0373ca090a91b1a26add051c668b4db7986db066ba36f792b94731d9d63a22_s390x as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:1d0373ca090a91b1a26add051c668b4db7986db066ba36f792b94731d9d63a22_s390x"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:1d0373ca090a91b1a26add051c668b4db7986db066ba36f792b94731d9d63a22_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:6bc7fe98083324fb541ad4b02866ffee094721fc51ea0410041902ca1d8fc010_arm64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:6bc7fe98083324fb541ad4b02866ffee094721fc51ea0410041902ca1d8fc010_arm64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:6bc7fe98083324fb541ad4b02866ffee094721fc51ea0410041902ca1d8fc010_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:6def5c25ebf96a413a8b39a1f89525c9285c47015c33937c05f17da4751d7053_ppc64le as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:6def5c25ebf96a413a8b39a1f89525c9285c47015c33937c05f17da4751d7053_ppc64le"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:6def5c25ebf96a413a8b39a1f89525c9285c47015c33937c05f17da4751d7053_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/grafana-rhel8@sha256:f039122ba1713d257d600c686fc1ab0989eeb8cdff81a3f0cb4b3c07c9f68864_amd64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:f039122ba1713d257d600c686fc1ab0989eeb8cdff81a3f0cb4b3c07c9f68864_amd64"
},
"product_reference": "openshift-service-mesh/grafana-rhel8@sha256:f039122ba1713d257d600c686fc1ab0989eeb8cdff81a3f0cb4b3c07c9f68864_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:15400b87ddb1e5c33554278802d57b8422aa88de29a3c64aa9b4452d450a87a6_s390x as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:15400b87ddb1e5c33554278802d57b8422aa88de29a3c64aa9b4452d450a87a6_s390x"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:15400b87ddb1e5c33554278802d57b8422aa88de29a3c64aa9b4452d450a87a6_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:2fa3223cd2ce127dcf1f2f374647671e88b0648420e03f68c2bc93103020e50b_amd64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:2fa3223cd2ce127dcf1f2f374647671e88b0648420e03f68c2bc93103020e50b_amd64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:2fa3223cd2ce127dcf1f2f374647671e88b0648420e03f68c2bc93103020e50b_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:b033af42b9c4b0c688f7af4fa98d57e2f66f973ab8627c08527eae8f9c58f892_arm64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:b033af42b9c4b0c688f7af4fa98d57e2f66f973ab8627c08527eae8f9c58f892_arm64"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:b033af42b9c4b0c688f7af4fa98d57e2f66f973ab8627c08527eae8f9c58f892_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-cni-rhel8@sha256:c20e558ab91554c579178f9088f7a691acb557b2fc7528cf8e0768852c57e5b4_ppc64le as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:c20e558ab91554c579178f9088f7a691acb557b2fc7528cf8e0768852c57e5b4_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-cni-rhel8@sha256:c20e558ab91554c579178f9088f7a691acb557b2fc7528cf8e0768852c57e5b4_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:1a7d34f4ae3c3629c1840491379145fa0553f53c4d1dcdcbaceaf3c536d815b6_arm64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:1a7d34f4ae3c3629c1840491379145fa0553f53c4d1dcdcbaceaf3c536d815b6_arm64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:1a7d34f4ae3c3629c1840491379145fa0553f53c4d1dcdcbaceaf3c536d815b6_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:3b89915f208b61fdc8630e3ad54050a60576b40331eac8d88fe432aa5f667021_ppc64le as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:3b89915f208b61fdc8630e3ad54050a60576b40331eac8d88fe432aa5f667021_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:3b89915f208b61fdc8630e3ad54050a60576b40331eac8d88fe432aa5f667021_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c9291488f6c8d374af2bd4b144ded86507e0c89c0f41be47206d9565f670db12_s390x as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:c9291488f6c8d374af2bd4b144ded86507e0c89c0f41be47206d9565f670db12_s390x"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:c9291488f6c8d374af2bd4b144ded86507e0c89c0f41be47206d9565f670db12_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-must-gather-rhel8@sha256:e14e1b3d5cf1dec91ee2621c2e1b80401c30d349434bd26fb8a276cc0224942e_amd64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:e14e1b3d5cf1dec91ee2621c2e1b80401c30d349434bd26fb8a276cc0224942e_amd64"
},
"product_reference": "openshift-service-mesh/istio-must-gather-rhel8@sha256:e14e1b3d5cf1dec91ee2621c2e1b80401c30d349434bd26fb8a276cc0224942e_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:036cf16e38c98408aa8de30da0dbc159902a9e12c5a7463707436e2fd94e6215_amd64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:036cf16e38c98408aa8de30da0dbc159902a9e12c5a7463707436e2fd94e6215_amd64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:036cf16e38c98408aa8de30da0dbc159902a9e12c5a7463707436e2fd94e6215_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:72b732762519ad5ec504166b58a15dc5974f6250fc565f16dce98e3c9dfa0f3a_arm64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:72b732762519ad5ec504166b58a15dc5974f6250fc565f16dce98e3c9dfa0f3a_arm64"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:72b732762519ad5ec504166b58a15dc5974f6250fc565f16dce98e3c9dfa0f3a_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:77c14339c06bf33f56cb7a33a1812186b3c025c6234d8574f8eafb0b9dee7072_ppc64le as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:77c14339c06bf33f56cb7a33a1812186b3c025c6234d8574f8eafb0b9dee7072_ppc64le"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:77c14339c06bf33f56cb7a33a1812186b3c025c6234d8574f8eafb0b9dee7072_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/istio-rhel8-operator@sha256:fed31e6b657f93e080acc90fd05c5bcaf79170eecfd0fd35a7396a6d679866f6_s390x as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:fed31e6b657f93e080acc90fd05c5bcaf79170eecfd0fd35a7396a6d679866f6_s390x"
},
"product_reference": "openshift-service-mesh/istio-rhel8-operator@sha256:fed31e6b657f93e080acc90fd05c5bcaf79170eecfd0fd35a7396a6d679866f6_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:047d78c2e420a442611554fd22684bd1138c2599817741323773e314c43008dc_s390x as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:047d78c2e420a442611554fd22684bd1138c2599817741323773e314c43008dc_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:047d78c2e420a442611554fd22684bd1138c2599817741323773e314c43008dc_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:6c4fbfe75338e0715d02ba69388ad8c492807962222ff0e8d9ca9ebb9b7fc214_amd64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:6c4fbfe75338e0715d02ba69388ad8c492807962222ff0e8d9ca9ebb9b7fc214_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:6c4fbfe75338e0715d02ba69388ad8c492807962222ff0e8d9ca9ebb9b7fc214_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:b01d3ef882f26764a5cfd2375bbe3e42778ca80158264e4e45297ebe0adedeb7_arm64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:b01d3ef882f26764a5cfd2375bbe3e42778ca80158264e4e45297ebe0adedeb7_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:b01d3ef882f26764a5cfd2375bbe3e42778ca80158264e4e45297ebe0adedeb7_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8-operator@sha256:fa63641d22e2701dd06a96e09479e8d313df8d479bc1bbdbd230851eed47717a_ppc64le as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:fa63641d22e2701dd06a96e09479e8d313df8d479bc1bbdbd230851eed47717a_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8-operator@sha256:fa63641d22e2701dd06a96e09479e8d313df8d479bc1bbdbd230851eed47717a_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:93e94afa56baa1c81b81d935e62fd0c568d65a3ed5130e1d8ddf265d93c906d7_arm64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:93e94afa56baa1c81b81d935e62fd0c568d65a3ed5130e1d8ddf265d93c906d7_arm64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:93e94afa56baa1c81b81d935e62fd0c568d65a3ed5130e1d8ddf265d93c906d7_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:956e949073b90ed152c8041380bd3c9fdc3865c593f25fb063cf7afa763e51d8_s390x as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:956e949073b90ed152c8041380bd3c9fdc3865c593f25fb063cf7afa763e51d8_s390x"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:956e949073b90ed152c8041380bd3c9fdc3865c593f25fb063cf7afa763e51d8_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:a9d8d6b1475eb8ab1aa61d7a76ec05ddccf3f6e0e511d22a3fba308eaf5a7504_amd64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:a9d8d6b1475eb8ab1aa61d7a76ec05ddccf3f6e0e511d22a3fba308eaf5a7504_amd64"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:a9d8d6b1475eb8ab1aa61d7a76ec05ddccf3f6e0e511d22a3fba308eaf5a7504_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/kiali-rhel8@sha256:d15b49cef4c2b96beec787e6a122cbbf567280cc37c30c6953f19a9e962b52c9_ppc64le as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:d15b49cef4c2b96beec787e6a122cbbf567280cc37c30c6953f19a9e962b52c9_ppc64le"
},
"product_reference": "openshift-service-mesh/kiali-rhel8@sha256:d15b49cef4c2b96beec787e6a122cbbf567280cc37c30c6953f19a9e962b52c9_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:0b5dbe4ac53ef0a926d2f8438fdd64e148585974a9d436e78cdb7615211e8a0c_arm64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:0b5dbe4ac53ef0a926d2f8438fdd64e148585974a9d436e78cdb7615211e8a0c_arm64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:0b5dbe4ac53ef0a926d2f8438fdd64e148585974a9d436e78cdb7615211e8a0c_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:4c2e2efc201a2cdc167071e6001c52404ae15ced1b777cb1462c79c6b1cda0bd_ppc64le as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:4c2e2efc201a2cdc167071e6001c52404ae15ced1b777cb1462c79c6b1cda0bd_ppc64le"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:4c2e2efc201a2cdc167071e6001c52404ae15ced1b777cb1462c79c6b1cda0bd_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:88e4a906a7337289043e01fc6fcbc68de65fabf2ccbe10aa166fda3488847c4d_s390x as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:88e4a906a7337289043e01fc6fcbc68de65fabf2ccbe10aa166fda3488847c4d_s390x"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:88e4a906a7337289043e01fc6fcbc68de65fabf2ccbe10aa166fda3488847c4d_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/pilot-rhel8@sha256:b75907822356c05807fa0939775c74b428cf995b03f04bb298b143ddcadffc28_amd64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:b75907822356c05807fa0939775c74b428cf995b03f04bb298b143ddcadffc28_amd64"
},
"product_reference": "openshift-service-mesh/pilot-rhel8@sha256:b75907822356c05807fa0939775c74b428cf995b03f04bb298b143ddcadffc28_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:356a674c259edaa6c8699e1459c168cb97d2b400b633993818abed80f78cb455_arm64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:356a674c259edaa6c8699e1459c168cb97d2b400b633993818abed80f78cb455_arm64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:356a674c259edaa6c8699e1459c168cb97d2b400b633993818abed80f78cb455_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:45c30dca9e3f5687a3f333d29daacc8548f3f733981bc17f58c1411d844991ec_s390x as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:45c30dca9e3f5687a3f333d29daacc8548f3f733981bc17f58c1411d844991ec_s390x"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:45c30dca9e3f5687a3f333d29daacc8548f3f733981bc17f58c1411d844991ec_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:be864a665faeb9f907667061792a91ba196ca38bbc634e225a04ad1da0e243c5_amd64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:be864a665faeb9f907667061792a91ba196ca38bbc634e225a04ad1da0e243c5_amd64"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:be864a665faeb9f907667061792a91ba196ca38bbc634e225a04ad1da0e243c5_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/proxyv2-rhel8@sha256:c13a1e17ed0549f7ce739f789821ff793a61e2d23b697fb4a956dd08102be9bd_ppc64le as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:c13a1e17ed0549f7ce739f789821ff793a61e2d23b697fb4a956dd08102be9bd_ppc64le"
},
"product_reference": "openshift-service-mesh/proxyv2-rhel8@sha256:c13a1e17ed0549f7ce739f789821ff793a61e2d23b697fb4a956dd08102be9bd_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:12a1e1ef1210f3cd50f0c82a0ce02101c188edde8e713d0dde88ea6f1396b479_ppc64le as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:12a1e1ef1210f3cd50f0c82a0ce02101c188edde8e713d0dde88ea6f1396b479_ppc64le"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:12a1e1ef1210f3cd50f0c82a0ce02101c188edde8e713d0dde88ea6f1396b479_ppc64le",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:3a75674bd2adf66e1aae0461c0c89681b453dc6b5fa4496f090252cee2300136_arm64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:3a75674bd2adf66e1aae0461c0c89681b453dc6b5fa4496f090252cee2300136_arm64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:3a75674bd2adf66e1aae0461c0c89681b453dc6b5fa4496f090252cee2300136_arm64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:495eb5b0225e22d9ce2c8b71584513b0c1323ec208d2022735aac6d6397a68ad_amd64 as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:495eb5b0225e22d9ce2c8b71584513b0c1323ec208d2022735aac6d6397a68ad_amd64"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:495eb5b0225e22d9ce2c8b71584513b0c1323ec208d2022735aac6d6397a68ad_amd64",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "openshift-service-mesh/ratelimit-rhel8@sha256:ce5904e6563fef477ed2d7fd8fb5d98843ed3304d5bfb0a898ca1e8553aa7516_s390x as a component of RHOSSM 2.4 for RHEL 8",
"product_id": "8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:ce5904e6563fef477ed2d7fd8fb5d98843ed3304d5bfb0a898ca1e8553aa7516_s390x"
},
"product_reference": "openshift-service-mesh/ratelimit-rhel8@sha256:ce5904e6563fef477ed2d7fd8fb5d98843ed3304d5bfb0a898ca1e8553aa7516_s390x",
"relates_to_product_reference": "8Base-RHOSSM-2.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-35942",
"cwe": {
"id": "CWE-416",
"name": "Use After Free"
},
"discovery_date": "2023-06-27T00:00:00+00:00",
"flags": [
{
"label": "vulnerable_code_not_present",
"product_ids": [
"8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:1d0373ca090a91b1a26add051c668b4db7986db066ba36f792b94731d9d63a22_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:6bc7fe98083324fb541ad4b02866ffee094721fc51ea0410041902ca1d8fc010_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:6def5c25ebf96a413a8b39a1f89525c9285c47015c33937c05f17da4751d7053_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:f039122ba1713d257d600c686fc1ab0989eeb8cdff81a3f0cb4b3c07c9f68864_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:15400b87ddb1e5c33554278802d57b8422aa88de29a3c64aa9b4452d450a87a6_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:2fa3223cd2ce127dcf1f2f374647671e88b0648420e03f68c2bc93103020e50b_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:b033af42b9c4b0c688f7af4fa98d57e2f66f973ab8627c08527eae8f9c58f892_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:c20e558ab91554c579178f9088f7a691acb557b2fc7528cf8e0768852c57e5b4_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:1a7d34f4ae3c3629c1840491379145fa0553f53c4d1dcdcbaceaf3c536d815b6_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:3b89915f208b61fdc8630e3ad54050a60576b40331eac8d88fe432aa5f667021_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:c9291488f6c8d374af2bd4b144ded86507e0c89c0f41be47206d9565f670db12_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:e14e1b3d5cf1dec91ee2621c2e1b80401c30d349434bd26fb8a276cc0224942e_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:036cf16e38c98408aa8de30da0dbc159902a9e12c5a7463707436e2fd94e6215_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:72b732762519ad5ec504166b58a15dc5974f6250fc565f16dce98e3c9dfa0f3a_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:77c14339c06bf33f56cb7a33a1812186b3c025c6234d8574f8eafb0b9dee7072_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:fed31e6b657f93e080acc90fd05c5bcaf79170eecfd0fd35a7396a6d679866f6_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:047d78c2e420a442611554fd22684bd1138c2599817741323773e314c43008dc_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:6c4fbfe75338e0715d02ba69388ad8c492807962222ff0e8d9ca9ebb9b7fc214_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:b01d3ef882f26764a5cfd2375bbe3e42778ca80158264e4e45297ebe0adedeb7_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:fa63641d22e2701dd06a96e09479e8d313df8d479bc1bbdbd230851eed47717a_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:93e94afa56baa1c81b81d935e62fd0c568d65a3ed5130e1d8ddf265d93c906d7_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:956e949073b90ed152c8041380bd3c9fdc3865c593f25fb063cf7afa763e51d8_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:a9d8d6b1475eb8ab1aa61d7a76ec05ddccf3f6e0e511d22a3fba308eaf5a7504_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:d15b49cef4c2b96beec787e6a122cbbf567280cc37c30c6953f19a9e962b52c9_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:0b5dbe4ac53ef0a926d2f8438fdd64e148585974a9d436e78cdb7615211e8a0c_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:4c2e2efc201a2cdc167071e6001c52404ae15ced1b777cb1462c79c6b1cda0bd_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:88e4a906a7337289043e01fc6fcbc68de65fabf2ccbe10aa166fda3488847c4d_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:b75907822356c05807fa0939775c74b428cf995b03f04bb298b143ddcadffc28_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:12a1e1ef1210f3cd50f0c82a0ce02101c188edde8e713d0dde88ea6f1396b479_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:3a75674bd2adf66e1aae0461c0c89681b453dc6b5fa4496f090252cee2300136_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:495eb5b0225e22d9ce2c8b71584513b0c1323ec208d2022735aac6d6397a68ad_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:ce5904e6563fef477ed2d7fd8fb5d98843ed3304d5bfb0a898ca1e8553aa7516_s390x"
]
}
],
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "2217978"
}
],
"notes": [
{
"category": "description",
"text": "A flaw was found in Envoy, where gRPC access loggers using the listener\u0027s global scope can cause a use-after-free crash when the listener is drained. This issue can be triggered by a listener discovery service (LDS) update with the same gRPC access log configuration.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "envoy: gRPC access log crash caused by the listener draining",
"title": "Vulnerability summary"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:356a674c259edaa6c8699e1459c168cb97d2b400b633993818abed80f78cb455_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:45c30dca9e3f5687a3f333d29daacc8548f3f733981bc17f58c1411d844991ec_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:be864a665faeb9f907667061792a91ba196ca38bbc634e225a04ad1da0e243c5_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:c13a1e17ed0549f7ce739f789821ff793a61e2d23b697fb4a956dd08102be9bd_ppc64le"
],
"known_not_affected": [
"8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:1d0373ca090a91b1a26add051c668b4db7986db066ba36f792b94731d9d63a22_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:6bc7fe98083324fb541ad4b02866ffee094721fc51ea0410041902ca1d8fc010_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:6def5c25ebf96a413a8b39a1f89525c9285c47015c33937c05f17da4751d7053_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/grafana-rhel8@sha256:f039122ba1713d257d600c686fc1ab0989eeb8cdff81a3f0cb4b3c07c9f68864_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:15400b87ddb1e5c33554278802d57b8422aa88de29a3c64aa9b4452d450a87a6_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:2fa3223cd2ce127dcf1f2f374647671e88b0648420e03f68c2bc93103020e50b_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:b033af42b9c4b0c688f7af4fa98d57e2f66f973ab8627c08527eae8f9c58f892_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-cni-rhel8@sha256:c20e558ab91554c579178f9088f7a691acb557b2fc7528cf8e0768852c57e5b4_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:1a7d34f4ae3c3629c1840491379145fa0553f53c4d1dcdcbaceaf3c536d815b6_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:3b89915f208b61fdc8630e3ad54050a60576b40331eac8d88fe432aa5f667021_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:c9291488f6c8d374af2bd4b144ded86507e0c89c0f41be47206d9565f670db12_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-must-gather-rhel8@sha256:e14e1b3d5cf1dec91ee2621c2e1b80401c30d349434bd26fb8a276cc0224942e_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:036cf16e38c98408aa8de30da0dbc159902a9e12c5a7463707436e2fd94e6215_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:72b732762519ad5ec504166b58a15dc5974f6250fc565f16dce98e3c9dfa0f3a_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:77c14339c06bf33f56cb7a33a1812186b3c025c6234d8574f8eafb0b9dee7072_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/istio-rhel8-operator@sha256:fed31e6b657f93e080acc90fd05c5bcaf79170eecfd0fd35a7396a6d679866f6_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:047d78c2e420a442611554fd22684bd1138c2599817741323773e314c43008dc_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:6c4fbfe75338e0715d02ba69388ad8c492807962222ff0e8d9ca9ebb9b7fc214_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:b01d3ef882f26764a5cfd2375bbe3e42778ca80158264e4e45297ebe0adedeb7_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8-operator@sha256:fa63641d22e2701dd06a96e09479e8d313df8d479bc1bbdbd230851eed47717a_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:93e94afa56baa1c81b81d935e62fd0c568d65a3ed5130e1d8ddf265d93c906d7_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:956e949073b90ed152c8041380bd3c9fdc3865c593f25fb063cf7afa763e51d8_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:a9d8d6b1475eb8ab1aa61d7a76ec05ddccf3f6e0e511d22a3fba308eaf5a7504_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/kiali-rhel8@sha256:d15b49cef4c2b96beec787e6a122cbbf567280cc37c30c6953f19a9e962b52c9_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:0b5dbe4ac53ef0a926d2f8438fdd64e148585974a9d436e78cdb7615211e8a0c_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:4c2e2efc201a2cdc167071e6001c52404ae15ced1b777cb1462c79c6b1cda0bd_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:88e4a906a7337289043e01fc6fcbc68de65fabf2ccbe10aa166fda3488847c4d_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/pilot-rhel8@sha256:b75907822356c05807fa0939775c74b428cf995b03f04bb298b143ddcadffc28_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:12a1e1ef1210f3cd50f0c82a0ce02101c188edde8e713d0dde88ea6f1396b479_ppc64le",
"8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:3a75674bd2adf66e1aae0461c0c89681b453dc6b5fa4496f090252cee2300136_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:495eb5b0225e22d9ce2c8b71584513b0c1323ec208d2022735aac6d6397a68ad_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/ratelimit-rhel8@sha256:ce5904e6563fef477ed2d7fd8fb5d98843ed3304d5bfb0a898ca1e8553aa7516_s390x"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2023-35942"
},
{
"category": "external",
"summary": "RHBZ#2217978",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2217978"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2023-35942",
"url": "https://www.cve.org/CVERecord?id=CVE-2023-35942"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2023-35942",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-35942"
}
],
"release_date": "2023-07-25T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2023-09-14T17:33:40+00:00",
"details": "Before applying this update, make sure all previously released errata\nrelevant to your system have been applied.\n\nFor details on how to apply this update, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:356a674c259edaa6c8699e1459c168cb97d2b400b633993818abed80f78cb455_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:45c30dca9e3f5687a3f333d29daacc8548f3f733981bc17f58c1411d844991ec_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:be864a665faeb9f907667061792a91ba196ca38bbc634e225a04ad1da0e243c5_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:c13a1e17ed0549f7ce739f789821ff793a61e2d23b697fb4a956dd08102be9bd_ppc64le"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2023:5174"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:356a674c259edaa6c8699e1459c168cb97d2b400b633993818abed80f78cb455_arm64",
"8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:45c30dca9e3f5687a3f333d29daacc8548f3f733981bc17f58c1411d844991ec_s390x",
"8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:be864a665faeb9f907667061792a91ba196ca38bbc634e225a04ad1da0e243c5_amd64",
"8Base-RHOSSM-2.4:openshift-service-mesh/proxyv2-rhel8@sha256:c13a1e17ed0549f7ce739f789821ff793a61e2d23b697fb4a956dd08102be9bd_ppc64le"
]
}
],
"threats": [
{
"category": "impact",
"details": "Moderate"
}
],
"title": "envoy: gRPC access log crash caused by the listener draining"
}
]
}
WID-SEC-W-2023-2058
Vulnerability from csaf_certbund - Published: 2023-08-13 22:00 - Updated: 2023-10-08 22:00Summary
Red Hat OpenShift Service Mesh und Service Mesh Containers: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
Red Hat Enterprise Linux (RHEL) ist eine populäre Linux-Distribution.
Angriff: Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux ausnutzen, um einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Betroffene Betriebssysteme: - Linux
In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente "Envoy". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente "Envoy". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente "Envoy". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente "Envoy". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente "Envoy". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente "Envoy". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente "Envoy". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente "Envoy". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente "Envoy". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente "Envoy". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente "Envoy". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuführen, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.
Affected products
Known affected
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Oracle Linux
Oracle
|
cpe:/o:oracle:linux:-
|
— |
References
15 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.\r\nRed Hat Enterprise Linux (RHEL) ist eine popul\u00e4re Linux-Distribution.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein entfernter, anonymer Angreifer kann mehrere Schwachstellen in Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2023-2058 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2058.json"
},
{
"category": "self",
"summary": "WID-SEC-2023-2058 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2058"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:3997-1 vom 2023-10-06",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-October/016564.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASECS-2023-007 vom 2023-09-27",
"url": "https://alas.aws.amazon.com/AL2/ALASECS-2023-007.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:5175 vom 2023-09-14",
"url": "https://access.redhat.com/errata/RHSA-2023:5175"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:5174 vom 2023-09-14",
"url": "https://access.redhat.com/errata/RHSA-2023:5174"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-12772 vom 2023-09-11",
"url": "https://linux.oracle.com/errata/ELSA-2023-12772.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-12781 vom 2023-09-08",
"url": "https://linux.oracle.com/errata/ELSA-2023-12781.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-12780 vom 2023-09-08",
"url": "https://linux.oracle.com/errata/ELSA-2023-12780.html"
},
{
"category": "external",
"summary": "Oracle Linux Security Advisory ELSA-2023-12771 vom 2023-09-06",
"url": "https://linux.oracle.com/errata/ELSA-2023-12771.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS2ECS-2023-006 vom 2023-09-07",
"url": "https://alas.aws.amazon.com/AL2/ALASECS-2023-006.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:4627 vom 2023-08-13",
"url": "https://access.redhat.com/errata/RHSA-2023:4627"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:4625 vom 2023-08-13",
"url": "https://access.redhat.com/errata/RHSA-2023:4625"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:4624 vom 2023-08-13",
"url": "https://access.redhat.com/errata/RHSA-2023:4624"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2023:4623 vom 2023-08-13",
"url": "https://access.redhat.com/errata/RHSA-2023:4623"
}
],
"source_lang": "en-US",
"title": "Red Hat OpenShift Service Mesh und Service Mesh Containers: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2023-10-08T22:00:00.000+00:00",
"generator": {
"date": "2024-08-15T17:57:03.993+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.3.5"
}
},
"id": "WID-SEC-W-2023-2058",
"initial_release_date": "2023-08-13T22:00:00.000+00:00",
"revision_history": [
{
"date": "2023-08-13T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2023-09-06T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Amazon und Oracle Linux aufgenommen"
},
{
"date": "2023-09-10T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2023-09-11T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Oracle Linux aufgenommen"
},
{
"date": "2023-09-14T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2023-09-27T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2023-10-08T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von SUSE aufgenommen"
}
],
"status": "final",
"version": "7"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Oracle Linux",
"product": {
"name": "Oracle Linux",
"product_id": "T004914",
"product_identification_helper": {
"cpe": "cpe:/o:oracle:linux:-"
}
}
}
],
"category": "vendor",
"name": "Oracle"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux \u003c Migration Toolkit for Applications 6.2.0",
"product": {
"name": "Red Hat Enterprise Linux \u003c Migration Toolkit for Applications 6.2.0",
"product_id": "T029302",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:migration_toolkit_for_applications_6.2.0"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat OpenShift \u003c Service Mesh 2.2.9",
"product": {
"name": "Red Hat OpenShift \u003c Service Mesh 2.2.9",
"product_id": "T029299",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:service_mesh_2.2.9"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift \u003c Service Mesh 2.3.6 Containers",
"product": {
"name": "Red Hat OpenShift \u003c Service Mesh 2.3.6 Containers",
"product_id": "T029300",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:service_mesh_2.3.6_containers"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift \u003c Service Mesh 2.4.2 Containers",
"product": {
"name": "Red Hat OpenShift \u003c Service Mesh 2.4.2 Containers",
"product_id": "T029301",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:service_mesh_2.4.2_containers"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-35945",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente \"Envoy\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T002207",
"67646",
"398363",
"T004914"
]
},
"release_date": "2023-08-13T22:00:00.000+00:00",
"title": "CVE-2023-35945"
},
{
"cve": "CVE-2023-35944",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente \"Envoy\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T002207",
"67646",
"398363",
"T004914"
]
},
"release_date": "2023-08-13T22:00:00.000+00:00",
"title": "CVE-2023-35944"
},
{
"cve": "CVE-2023-35943",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente \"Envoy\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T002207",
"67646",
"398363",
"T004914"
]
},
"release_date": "2023-08-13T22:00:00.000+00:00",
"title": "CVE-2023-35943"
},
{
"cve": "CVE-2023-35942",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente \"Envoy\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T002207",
"67646",
"398363",
"T004914"
]
},
"release_date": "2023-08-13T22:00:00.000+00:00",
"title": "CVE-2023-35942"
},
{
"cve": "CVE-2023-35941",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente \"Envoy\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T002207",
"67646",
"398363",
"T004914"
]
},
"release_date": "2023-08-13T22:00:00.000+00:00",
"title": "CVE-2023-35941"
},
{
"cve": "CVE-2023-27496",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente \"Envoy\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T002207",
"67646",
"398363",
"T004914"
]
},
"release_date": "2023-08-13T22:00:00.000+00:00",
"title": "CVE-2023-27496"
},
{
"cve": "CVE-2023-27493",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente \"Envoy\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T002207",
"67646",
"398363",
"T004914"
]
},
"release_date": "2023-08-13T22:00:00.000+00:00",
"title": "CVE-2023-27493"
},
{
"cve": "CVE-2023-27492",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente \"Envoy\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T002207",
"67646",
"398363",
"T004914"
]
},
"release_date": "2023-08-13T22:00:00.000+00:00",
"title": "CVE-2023-27492"
},
{
"cve": "CVE-2023-27491",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente \"Envoy\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T002207",
"67646",
"398363",
"T004914"
]
},
"release_date": "2023-08-13T22:00:00.000+00:00",
"title": "CVE-2023-27491"
},
{
"cve": "CVE-2023-27488",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente \"Envoy\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T002207",
"67646",
"398363",
"T004914"
]
},
"release_date": "2023-08-13T22:00:00.000+00:00",
"title": "CVE-2023-27488"
},
{
"cve": "CVE-2023-27487",
"notes": [
{
"category": "description",
"text": "In Red Hat OpenShift Service Mesh und Service Mesh Containers, sowie Red Hat Enterprise Linux existieren mehrere Schwachstellen in der Komponente \"Envoy\". Ein entfernter, anonymer Angreifer kann diese Schwachstellen ausnutzen, um einen Denial of Service Zustand herbeizuf\u00fchren, Dateien zu manipulieren, Sicherheitsvorkehrungen zu umgehen oder Informationen offenzulegen."
}
],
"product_status": {
"known_affected": [
"T002207",
"67646",
"398363",
"T004914"
]
},
"release_date": "2023-08-13T22:00:00.000+00:00",
"title": "CVE-2023-27487"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…