Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2023-39198 (GCVE-0-2023-39198)
Vulnerability from cvelistv5 – Published: 2023-11-09 19:15 – Updated: 2026-03-24 11:28
VLAI
EPSS
Title
Kernel: qxl: race condition leading to use-after-free in qxl_mode_dumb_create()
Summary
A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.
Severity
7.5 (High)
SSVC
Exploitation: none
Automatable: no
Technical Impact: total
CISA Coordinator (v2.0.3)
CWE
- CWE-416 - Use After Free
Assigner
References
6 references
| URL | Tags |
|---|---|
| https://access.redhat.com/errata/RHSA-2024:2394 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/errata/RHSA-2024:2950 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/errata/RHSA-2024:3138 | vendor-advisoryx_refsource_REDHAT |
| https://access.redhat.com/security/cve/CVE-2023-39198 | vdb-entryx_refsource_REDHAT |
| https://bugzilla.redhat.com/show_bug.cgi?id=2218332 | issue-trackingx_refsource_REDHAT |
| https://lists.debian.org/debian-lts-announce/2024… | x_transferred |
Impacted products
6 products
| Vendor | Product | Version | |
|---|---|---|---|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
0:4.18.0-553.rt7.342.el8_10 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:8::nfv cpe:/a:redhat:enterprise_linux:8::realtime |
|
| Red Hat | Red Hat Enterprise Linux 8 |
Unaffected:
0:4.18.0-553.el8_10 , < *
(rpm)
cpe:/o:redhat:enterprise_linux:8::baseos cpe:/a:redhat:enterprise_linux:8::crb |
|
| Red Hat | Red Hat Enterprise Linux 9 |
Unaffected:
0:5.14.0-427.13.1.el9_4 , < *
(rpm)
cpe:/a:redhat:enterprise_linux:9::crb cpe:/a:redhat:enterprise_linux:9::realtime cpe:/a:redhat:enterprise_linux:9::nfv cpe:/o:redhat:enterprise_linux:9::baseos cpe:/a:redhat:enterprise_linux:9::appstream |
|
| Red Hat | Red Hat Enterprise Linux 6 |
cpe:/o:redhat:enterprise_linux:6 |
|
| Red Hat | Red Hat Enterprise Linux 7 |
cpe:/o:redhat:enterprise_linux:7 |
|
| Red Hat | Red Hat Enterprise Linux 9 |
cpe:/o:redhat:enterprise_linux:9 |
Date Public
2023-08-17 00:00
{
"containers": {
"adp": [
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2023-39198",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "no"
},
{
"Technical Impact": "total"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-08-01T03:55:52.570322Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-08-01T13:53:12.378Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
},
{
"providerMetadata": {
"dateUpdated": "2024-08-02T18:02:05.368Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHSA-2024:2394",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2394"
},
{
"name": "RHSA-2024:2950",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2950"
},
{
"name": "RHSA-2024:3138",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3138"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/security/cve/CVE-2023-39198"
},
{
"name": "RHBZ#2218332",
"tags": [
"issue-tracking",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218332"
},
{
"tags": [
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:8::nfv",
"cpe:/a:redhat:enterprise_linux:8::realtime"
],
"defaultStatus": "affected",
"packageName": "kernel-rt",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.18.0-553.rt7.342.el8_10",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:8::baseos",
"cpe:/a:redhat:enterprise_linux:8::crb"
],
"defaultStatus": "affected",
"packageName": "kernel",
"product": "Red Hat Enterprise Linux 8",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:4.18.0-553.el8_10",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::crb",
"cpe:/a:redhat:enterprise_linux:9::realtime",
"cpe:/a:redhat:enterprise_linux:9::nfv",
"cpe:/o:redhat:enterprise_linux:9::baseos",
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "kernel",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.14.0-427.13.1.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/a:redhat:enterprise_linux:9::crb",
"cpe:/a:redhat:enterprise_linux:9::realtime",
"cpe:/a:redhat:enterprise_linux:9::nfv",
"cpe:/o:redhat:enterprise_linux:9::baseos",
"cpe:/a:redhat:enterprise_linux:9::appstream"
],
"defaultStatus": "affected",
"packageName": "kernel",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat",
"versions": [
{
"lessThan": "*",
"status": "unaffected",
"version": "0:5.14.0-427.13.1.el9_4",
"versionType": "rpm"
}
]
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:6"
],
"defaultStatus": "unknown",
"packageName": "kernel",
"product": "Red Hat Enterprise Linux 6",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "kernel",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:7"
],
"defaultStatus": "unknown",
"packageName": "kernel-rt",
"product": "Red Hat Enterprise Linux 7",
"vendor": "Red Hat"
},
{
"collectionURL": "https://access.redhat.com/downloads/content/package-browser/",
"cpes": [
"cpe:/o:redhat:enterprise_linux:9"
],
"defaultStatus": "affected",
"packageName": "kernel-rt",
"product": "Red Hat Enterprise Linux 9",
"vendor": "Red Hat"
}
],
"datePublic": "2023-08-17T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation."
}
],
"metrics": [
{
"other": {
"content": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"value": "Moderate"
},
"type": "Red Hat severity rating"
}
},
{
"cvssV3_1": {
"attackComplexity": "HIGH",
"attackVector": "LOCAL",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "HIGH",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"format": "CVSS"
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-416",
"description": "Use After Free",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2026-03-24T11:28:17.016Z",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "RHSA-2024:2394",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2394"
},
{
"name": "RHSA-2024:2950",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:2950"
},
{
"name": "RHSA-2024:3138",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2024:3138"
},
{
"tags": [
"vdb-entry",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/security/cve/CVE-2023-39198"
},
{
"name": "RHBZ#2218332",
"tags": [
"issue-tracking",
"x_refsource_REDHAT"
],
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=2218332"
}
],
"timeline": [
{
"lang": "en",
"time": "2023-06-28T00:00:00.000Z",
"value": "Reported to Red Hat."
},
{
"lang": "en",
"time": "2023-08-17T00:00:00.000Z",
"value": "Made public."
}
],
"title": "Kernel: qxl: race condition leading to use-after-free in qxl_mode_dumb_create()",
"workarounds": [
{
"lang": "en",
"value": "Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability."
}
],
"x_generator": {
"engine": "cvelib 1.8.0"
},
"x_redhatCweChain": "CWE-416: Use After Free"
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2023-39198",
"datePublished": "2023-11-09T19:15:47.605Z",
"dateReserved": "2023-07-25T17:04:34.810Z",
"dateUpdated": "2026-03-24T11:28:17.016Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.2",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2023-39198",
"date": "2026-06-25",
"epss": "0.0042",
"percentile": "0.33613"
},
"fkie_nvd": {
"configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\", \"versionEndExcluding\": \"6.5\", \"matchCriteriaId\": \"98C491C7-598A-4D36-BA4F-3505A5727ED1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:6.5:rc1:*:*:*:*:*:*\", \"matchCriteriaId\": \"0B3E6E4D-E24E-4630-B00C-8C9901C597B0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:6.5:rc2:*:*:*:*:*:*\", \"matchCriteriaId\": \"E4A01A71-0F09-4DB2-A02F-7EFFBE27C98D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:6.5:rc3:*:*:*:*:*:*\", \"matchCriteriaId\": \"F5608371-157A-4318-8A2E-4104C3467EA1\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:6.5:rc4:*:*:*:*:*:*\", \"matchCriteriaId\": \"2226A776-DF8C-49E0-A030-0A7853BB018A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:6.5:rc5:*:*:*:*:*:*\", \"matchCriteriaId\": \"6F15C659-DF06-455A-9765-0E6DE920F29A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:linux:linux_kernel:6.5:rc6:*:*:*:*:*:*\", \"matchCriteriaId\": \"5B1C14ED-ABC4-41D3-8D9C-D38C6A65B4DE\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CC559B26-5DFC-4B7A-A27C-B77DE755DFF9\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F4CFF558-3C47-480D-A2F0-BABF26042943\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]}]",
"descriptions": "[{\"lang\": \"en\", \"value\": \"A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.\"}, {\"lang\": \"es\", \"value\": \"Se encontr\\u00f3 una condici\\u00f3n de ejecuci\\u00f3n en el controlador QXL del kernel de Linux. La funci\\u00f3n qxl_mode_dumb_create() desreferencia el qobj devuelto por qxl_gem_object_create_with_handle(), pero el identificador es el \\u00fanico que contiene una referencia a \\u00e9l. Esta falla permite a un atacante adivinar el valor de identificador devuelto y desencadenar un problema de use-after-free, lo que podr\\u00eda provocar una denegaci\\u00f3n de servicio o una escalada de privilegios.\"}]",
"id": "CVE-2023-39198",
"lastModified": "2024-11-21T08:14:53.863",
"metrics": "{\"cvssMetricV31\": [{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H\", \"baseScore\": 7.5, \"baseSeverity\": \"HIGH\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"CHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 0.8, \"impactScore\": 6.0}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 6.4, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 0.5, \"impactScore\": 5.9}]}",
"published": "2023-11-09T20:15:08.730",
"references": "[{\"url\": \"https://access.redhat.com/errata/RHSA-2024:2394\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2950\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3138\", \"source\": \"secalert@redhat.com\"}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2023-39198\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2218332\", \"source\": \"secalert@redhat.com\", \"tags\": [\"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2394\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2950\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3138\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2023-39198\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Third Party Advisory\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2218332\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Patch\", \"Third Party Advisory\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Modified",
"weaknesses": "[{\"source\": \"secalert@redhat.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-416\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-416\"}]}]"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2023-39198\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2023-11-09T20:15:08.730\",\"lastModified\":\"2026-03-24T12:16:07.637\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.\"},{\"lang\":\"es\",\"value\":\"Se encontr\u00f3 una condici\u00f3n de ejecuci\u00f3n en el controlador QXL del kernel de Linux. La funci\u00f3n qxl_mode_dumb_create() desreferencia el qobj devuelto por qxl_gem_object_create_with_handle(), pero el identificador es el \u00fanico que contiene una referencia a \u00e9l. Esta falla permite a un atacante adivinar el valor de identificador devuelto y desencadenar un problema de use-after-free, lo que podr\u00eda provocar una denegaci\u00f3n de servicio o una escalada de privilegios.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H\",\"baseScore\":7.5,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.8,\"impactScore\":6.0},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":6.4,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"HIGH\",\"privilegesRequired\":\"HIGH\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":0.5,\"impactScore\":5.9}]},\"weaknesses\":[{\"source\":\"secalert@redhat.com\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-416\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.5\",\"matchCriteriaId\":\"98C491C7-598A-4D36-BA4F-3505A5727ED1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.5:rc1:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B3E6E4D-E24E-4630-B00C-8C9901C597B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.5:rc2:*:*:*:*:*:*\",\"matchCriteriaId\":\"E4A01A71-0F09-4DB2-A02F-7EFFBE27C98D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.5:rc3:*:*:*:*:*:*\",\"matchCriteriaId\":\"F5608371-157A-4318-8A2E-4104C3467EA1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.5:rc4:*:*:*:*:*:*\",\"matchCriteriaId\":\"2226A776-DF8C-49E0-A030-0A7853BB018A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.5:rc5:*:*:*:*:*:*\",\"matchCriteriaId\":\"6F15C659-DF06-455A-9765-0E6DE920F29A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:linux:linux_kernel:6.5:rc6:*:*:*:*:*:*\",\"matchCriteriaId\":\"5B1C14ED-ABC4-41D3-8D9C-D38C6A65B4DE\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC559B26-5DFC-4B7A-A27C-B77DE755DFF9\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4CFF558-3C47-480D-A2F0-BABF26042943\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7F6FB57C-2BC7-487C-96DD-132683AEB35D\"}]}]}],\"references\":[{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2394\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2950\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3138\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2023-39198\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2218332\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2394\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:2950\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/errata/RHSA-2024:3138\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://access.redhat.com/security/cve/CVE-2023-39198\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://bugzilla.redhat.com/show_bug.cgi?id=2218332\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:2394\", \"name\": \"RHSA-2024:2394\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2950\", \"name\": \"RHSA-2024:2950\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3138\", \"name\": \"RHSA-2024:3138\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2023-39198\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2218332\", \"name\": \"RHBZ#2218332\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\", \"x_transferred\"]}, {\"url\": \"https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html\", \"tags\": [\"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T18:02:05.368Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-39198\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"total\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-08-01T03:55:52.570322Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-08-01T13:53:09.778Z\"}}], \"cna\": {\"title\": \"Kernel: qxl: race condition leading to use-after-free in qxl_mode_dumb_create()\", \"metrics\": [{\"other\": {\"type\": \"Red Hat severity rating\", \"content\": {\"value\": \"Moderate\", \"namespace\": \"https://access.redhat.com/security/updates/classification/\"}}}, {\"format\": \"CVSS\", \"cvssV3_1\": {\"scope\": \"CHANGED\", \"version\": \"3.1\", \"baseScore\": 7.5, \"attackVector\": \"LOCAL\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H\", \"integrityImpact\": \"HIGH\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"HIGH\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"HIGH\", \"confidentialityImpact\": \"HIGH\"}}], \"affected\": [{\"cpes\": [\"cpe:/a:redhat:enterprise_linux:8::nfv\", \"cpe:/a:redhat:enterprise_linux:8::realtime\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.18.0-553.rt7.342.el8_10\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"kernel-rt\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:8::baseos\", \"cpe:/a:redhat:enterprise_linux:8::crb\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 8\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:4.18.0-553.el8_10\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"kernel\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::crb\", \"cpe:/a:redhat:enterprise_linux:9::realtime\", \"cpe:/a:redhat:enterprise_linux:9::nfv\", \"cpe:/o:redhat:enterprise_linux:9::baseos\", \"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:5.14.0-427.13.1.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"kernel\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/a:redhat:enterprise_linux:9::crb\", \"cpe:/a:redhat:enterprise_linux:9::realtime\", \"cpe:/a:redhat:enterprise_linux:9::nfv\", \"cpe:/o:redhat:enterprise_linux:9::baseos\", \"cpe:/a:redhat:enterprise_linux:9::appstream\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"versions\": [{\"status\": \"unaffected\", \"version\": \"0:5.14.0-427.13.1.el9_4\", \"lessThan\": \"*\", \"versionType\": \"rpm\"}], \"packageName\": \"kernel\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:6\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 6\", \"packageName\": \"kernel\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"kernel\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:7\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 7\", \"packageName\": \"kernel-rt\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"unknown\"}, {\"cpes\": [\"cpe:/o:redhat:enterprise_linux:9\"], \"vendor\": \"Red Hat\", \"product\": \"Red Hat Enterprise Linux 9\", \"packageName\": \"kernel-rt\", \"collectionURL\": \"https://access.redhat.com/downloads/content/package-browser/\", \"defaultStatus\": \"affected\"}], \"timeline\": [{\"lang\": \"en\", \"time\": \"2023-06-28T00:00:00.000Z\", \"value\": \"Reported to Red Hat.\"}, {\"lang\": \"en\", \"time\": \"2023-08-17T00:00:00.000Z\", \"value\": \"Made public.\"}], \"datePublic\": \"2023-08-17T00:00:00.000Z\", \"references\": [{\"url\": \"https://access.redhat.com/errata/RHSA-2024:2394\", \"name\": \"RHSA-2024:2394\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:2950\", \"name\": \"RHSA-2024:2950\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/errata/RHSA-2024:3138\", \"name\": \"RHSA-2024:3138\", \"tags\": [\"vendor-advisory\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://access.redhat.com/security/cve/CVE-2023-39198\", \"tags\": [\"vdb-entry\", \"x_refsource_REDHAT\"]}, {\"url\": \"https://bugzilla.redhat.com/show_bug.cgi?id=2218332\", \"name\": \"RHBZ#2218332\", \"tags\": [\"issue-tracking\", \"x_refsource_REDHAT\"]}], \"workarounds\": [{\"lang\": \"en\", \"value\": \"Mitigation for this issue is either not available or the currently available options do not meet the Red Hat Product Security criteria comprising ease of use and deployment, applicability to widespread installation base or stability.\"}], \"x_generator\": {\"engine\": \"cvelib 1.8.0\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-416\", \"description\": \"Use After Free\"}]}], \"providerMetadata\": {\"orgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"shortName\": \"redhat\", \"dateUpdated\": \"2026-03-24T11:28:17.016Z\"}, \"x_redhatCweChain\": \"CWE-416: Use After Free\"}}",
"cveMetadata": "{\"cveId\": \"CVE-2023-39198\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2026-03-24T11:28:17.016Z\", \"dateReserved\": \"2023-07-25T17:04:34.810Z\", \"assignerOrgId\": \"53f830b8-0a3f-465b-8143-3b8a9948e749\", \"datePublished\": \"2023-11-09T19:15:47.605Z\", \"assignerShortName\": \"redhat\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.2"
}
}
}
SUSE-SU-2023:4883-1
Vulnerability from csaf_suse - Published: 2023-12-15 10:41 - Updated: 2023-12-15 10:41Summary
Security update for the Linux Kernel
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel
Description of the patch:
The SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes.
The following security bugs were fixed:
- CVE-2023-0461: Fixed use-after-free in icsk_ulp_data (bsc#1208787).
- CVE-2023-31083: Fixed race condition in hci_uart_tty_ioctl (bsc#1210780).
- CVE-2023-39197: Fixed a out-of-bounds read in nf_conntrack_dccp_packet() (bsc#1216976).
- CVE-2023-39198: Fixed a race condition leading to use-after-free in qxl_mode_dumb_create() (bsc#1216965).
- CVE-2023-45863: Fixed a out-of-bounds write in fill_kobj_path() (bsc#1216058).
- CVE-2023-45871: Fixed an issue in the IGB driver, where the buffer size may not be adequate for frames larger than the MTU (bsc#1216259).
- CVE-2023-5717: Fixed a heap out-of-bounds write vulnerability in the Performance Events component (bsc#1216584).
The following non-security bugs were fixed:
- cpu/SMT: Allow enabling partial SMT states via sysfs (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
- cpu/SMT: Create topology_smt_thread_allowed() (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
- cpu/SMT: Move SMT prototypes into cpu_smt.h (bsc#1214408).
- cpu/SMT: Move smt/control simple exit cases earlier (bsc#1214408).
- cpu/SMT: Remove topology_smt_supported() (bsc#1214408).
- cpu/SMT: Store the current/max number of threads (bsc#1214408).
- cpu/hotplug: Create SMT sysfs interface for all arches (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
- dm-raid: remove useless checking in raid_message() (git-fixes).
- l2tp: fix refcount leakage on PPPoL2TP sockets (git-fixes).
- l2tp: fix {pppol2tp, l2tp_dfs}_seq_stop() in case of seq_file overflow (git-fixes).
- md/bitmap: always wake up md_thread in timeout_store (git-fixes).
- md/bitmap: factor out a helper to set timeout (git-fixes).
- md/raid10: Do not add spare disk when recovery fails (git-fixes).
- md/raid10: check slab-out-of-bounds in md_bitmap_get_counter (git-fixes).
- md/raid10: clean up md_add_new_disk() (git-fixes).
- md/raid10: fix io loss while replacement replace rdev (git-fixes).
- md/raid10: fix leak of 'r10bio->remaining' for recovery (git-fixes).
- md/raid10: fix memleak for 'conf->bio_split' (git-fixes).
- md/raid10: fix memleak of md thread (git-fixes).
- md/raid10: fix null-ptr-deref in raid10_sync_request (git-fixes).
- md/raid10: fix null-ptr-deref of mreplace in raid10_sync_request (git-fixes).
- md/raid10: fix overflow of md/safe_mode_delay (git-fixes).
- md/raid10: fix wrong setting of max_corr_read_errors (git-fixes).
- md/raid10: improve code of mrdev in raid10_sync_request (git-fixes).
- md/raid10: prevent soft lockup while flush writes (git-fixes).
- md/raid10: prioritize adding disk to 'removed' mirror (git-fixes).
- md: Flush workqueue md_rdev_misc_wq in md_alloc() (git-fixes).
- md: add new workqueue for delete rdev (git-fixes).
- md: avoid signed overflow in slot_store() (git-fixes).
- md: do not return existing mddevs from mddev_find_or_alloc (git-fixes).
- md: factor out a mddev_alloc_unit helper from mddev_find (git-fixes).
- md: fix data corruption for raid456 when reshape restart while grow up (git-fixes).
- md: fix deadlock causing by sysfs_notify (git-fixes).
- md: fix incorrect declaration about claim_rdev in md_import_device (git-fixes).
- md: flush md_rdev_misc_wq for HOT_ADD_DISK case (git-fixes).
- md: get sysfs entry after redundancy attr group create (git-fixes).
- md: refactor mddev_find_or_alloc (git-fixes).
- md: remove lock_bdev / unlock_bdev (git-fixes).
- mm, memcg: add mem_cgroup_disabled checks in vmpressure and swap-related functions (bsc#1190208 (MM functional and performance backports) bsc#1216759).
- net-memcg: Fix scope of sockmem pressure indicators (bsc#1216759).
- net: mana: Configure hwc timeout from hardware (bsc#1214037).
- net: mana: Fix MANA VF unload when hardware is unresponsive (bsc#1214764).
- powerpc/pseries: Honour current SMT state when DLPAR onlining CPUs (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
- powerpc/pseries: Initialise CPU hotplug callbacks earlier (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).
- powerpc: Add HOTPLUG_SMT support (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588). Update config files.
- ring-buffer: Avoid softlockup in ring_buffer_resize() (git-fixes).
- s390/cio: unregister device when the only path is gone (git-fixes bsc#1217607).
- s390/cmma: fix detection of DAT pages (LTC#203996 bsc#1217087).
- s390/cmma: fix handling of swapper_pg_dir and invalid_pg_dir (LTC#203996 bsc#1217087).
- s390/cmma: fix initial kernel address space page table walk (LTC#203996 bsc#1217087).
- s390/crashdump: fix TOD programmable field size (git-fixes bsc#1217206).
- s390/dasd: protect device queue against concurrent access (git-fixes bsc#1217519).
- s390/dasd: use correct number of retries for ERP requests (git-fixes bsc#1217604).
- s390/mm: add missing arch_set_page_dat() call to gmap allocations (LTC#203996 bsc#1217087).
- s390/mm: add missing arch_set_page_dat() call to vmem_crst_alloc() (LTC#203996 bsc#1217087).
- s390/ptrace: fix PTRACE_GET_LAST_BREAK error handling (git-fixes bsc#1217603).
- scsi: qla2xxx: Fix double free of dsd_list during driver load (git-fixes).
- scsi: qla2xxx: Use FIELD_GET() to extract PCIe capability fields (git-fixes).
- tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1216031).
- usb-storage: fix deadlock when a scsi command timeouts more than once (git-fixes).
- usb: serial: option: add Quectel RM500U-CN modem (git-fixes).
- usb: serial: option: add Telit FE990 compositions (git-fixes).
- usb: serial: option: add UNISOC vendor and TOZED LT70C product (git-fixes).
- usb: typec: tcpm: Fix altmode re-registration causes sysfs create fail (git-fixes).
- xfs: fix units conversion error in xfs_bmap_del_extent_delay (git-fixes).
- xfs: make sure maxlen is still congruent with prod when rounding down (git-fixes).
- xfs: reserve data and rt quota at the same time (bsc#1203496).
Patchnames: SUSE-2023-4883,SUSE-SLE-SERVER-12-SP5-2023-4883
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.8 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
5.5 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
4 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
6.4 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
5.3 (Medium)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
moderate
7.8 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
62 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel",
"title": "Title of the patch"
},
{
"category": "description",
"text": "\n\nThe SUSE Linux Enterprise 12 SP5 Azure kernel was updated to receive various security and bugfixes.\n\n\nThe following security bugs were fixed:\n\n- CVE-2023-0461: Fixed use-after-free in icsk_ulp_data (bsc#1208787).\n- CVE-2023-31083: Fixed race condition in hci_uart_tty_ioctl (bsc#1210780).\n- CVE-2023-39197: Fixed a out-of-bounds read in nf_conntrack_dccp_packet() (bsc#1216976).\n- CVE-2023-39198: Fixed a race condition leading to use-after-free in qxl_mode_dumb_create() (bsc#1216965).\n- CVE-2023-45863: Fixed a out-of-bounds write in fill_kobj_path() (bsc#1216058).\n- CVE-2023-45871: Fixed an issue in the IGB driver, where the buffer size may not be adequate for frames larger than the MTU (bsc#1216259).\n- CVE-2023-5717: Fixed a heap out-of-bounds write vulnerability in the Performance Events component (bsc#1216584).\n\nThe following non-security bugs were fixed:\n\n- cpu/SMT: Allow enabling partial SMT states via sysfs (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).\n- cpu/SMT: Create topology_smt_thread_allowed() (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).\n- cpu/SMT: Move SMT prototypes into cpu_smt.h (bsc#1214408).\n- cpu/SMT: Move smt/control simple exit cases earlier (bsc#1214408).\n- cpu/SMT: Remove topology_smt_supported() (bsc#1214408).\n- cpu/SMT: Store the current/max number of threads (bsc#1214408).\n- cpu/hotplug: Create SMT sysfs interface for all arches (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).\n- dm-raid: remove useless checking in raid_message() (git-fixes).\n- l2tp: fix refcount leakage on PPPoL2TP sockets (git-fixes).\n- l2tp: fix {pppol2tp, l2tp_dfs}_seq_stop() in case of seq_file overflow (git-fixes).\n- md/bitmap: always wake up md_thread in timeout_store (git-fixes).\n- md/bitmap: factor out a helper to set timeout (git-fixes).\n- md/raid10: Do not add spare disk when recovery fails (git-fixes).\n- md/raid10: check slab-out-of-bounds in md_bitmap_get_counter (git-fixes).\n- md/raid10: clean up md_add_new_disk() (git-fixes).\n- md/raid10: fix io loss while replacement replace rdev (git-fixes).\n- md/raid10: fix leak of \u0027r10bio-\u003eremaining\u0027 for recovery (git-fixes).\n- md/raid10: fix memleak for \u0027conf-\u003ebio_split\u0027 (git-fixes).\n- md/raid10: fix memleak of md thread (git-fixes).\n- md/raid10: fix null-ptr-deref in raid10_sync_request (git-fixes).\n- md/raid10: fix null-ptr-deref of mreplace in raid10_sync_request (git-fixes).\n- md/raid10: fix overflow of md/safe_mode_delay (git-fixes).\n- md/raid10: fix wrong setting of max_corr_read_errors (git-fixes).\n- md/raid10: improve code of mrdev in raid10_sync_request (git-fixes).\n- md/raid10: prevent soft lockup while flush writes (git-fixes).\n- md/raid10: prioritize adding disk to \u0027removed\u0027 mirror (git-fixes).\n- md: Flush workqueue md_rdev_misc_wq in md_alloc() (git-fixes).\n- md: add new workqueue for delete rdev (git-fixes).\n- md: avoid signed overflow in slot_store() (git-fixes).\n- md: do not return existing mddevs from mddev_find_or_alloc (git-fixes).\n- md: factor out a mddev_alloc_unit helper from mddev_find (git-fixes).\n- md: fix data corruption for raid456 when reshape restart while grow up (git-fixes).\n- md: fix deadlock causing by sysfs_notify (git-fixes).\n- md: fix incorrect declaration about claim_rdev in md_import_device (git-fixes).\n- md: flush md_rdev_misc_wq for HOT_ADD_DISK case (git-fixes).\n- md: get sysfs entry after redundancy attr group create (git-fixes).\n- md: refactor mddev_find_or_alloc (git-fixes).\n- md: remove lock_bdev / unlock_bdev (git-fixes).\n- mm, memcg: add mem_cgroup_disabled checks in vmpressure and swap-related functions (bsc#1190208 (MM functional and performance backports) bsc#1216759).\n- net-memcg: Fix scope of sockmem pressure indicators (bsc#1216759).\n- net: mana: Configure hwc timeout from hardware (bsc#1214037).\n- net: mana: Fix MANA VF unload when hardware is unresponsive (bsc#1214764).\n- powerpc/pseries: Honour current SMT state when DLPAR onlining CPUs (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).\n- powerpc/pseries: Initialise CPU hotplug callbacks earlier (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588).\n- powerpc: Add HOTPLUG_SMT support (bsc#1214285 bsc#1205462 ltc#200161 ltc#200588). Update config files.\n- ring-buffer: Avoid softlockup in ring_buffer_resize() (git-fixes).\n- s390/cio: unregister device when the only path is gone (git-fixes bsc#1217607).\n- s390/cmma: fix detection of DAT pages (LTC#203996 bsc#1217087).\n- s390/cmma: fix handling of swapper_pg_dir and invalid_pg_dir (LTC#203996 bsc#1217087).\n- s390/cmma: fix initial kernel address space page table walk (LTC#203996 bsc#1217087).\n- s390/crashdump: fix TOD programmable field size (git-fixes bsc#1217206).\n- s390/dasd: protect device queue against concurrent access (git-fixes bsc#1217519).\n- s390/dasd: use correct number of retries for ERP requests (git-fixes bsc#1217604).\n- s390/mm: add missing arch_set_page_dat() call to gmap allocations (LTC#203996 bsc#1217087).\n- s390/mm: add missing arch_set_page_dat() call to vmem_crst_alloc() (LTC#203996 bsc#1217087).\n- s390/ptrace: fix PTRACE_GET_LAST_BREAK error handling (git-fixes bsc#1217603).\n- scsi: qla2xxx: Fix double free of dsd_list during driver load (git-fixes).\n- scsi: qla2xxx: Use FIELD_GET() to extract PCIe capability fields (git-fixes).\n- tracing: Increase PERF_MAX_TRACE_SIZE to handle Sentinel1 and docker together (bsc#1216031).\n- usb-storage: fix deadlock when a scsi command timeouts more than once (git-fixes).\n- usb: serial: option: add Quectel RM500U-CN modem (git-fixes).\n- usb: serial: option: add Telit FE990 compositions (git-fixes).\n- usb: serial: option: add UNISOC vendor and TOZED LT70C product (git-fixes).\n- usb: typec: tcpm: Fix altmode re-registration causes sysfs create fail (git-fixes).\n- xfs: fix units conversion error in xfs_bmap_del_extent_delay (git-fixes).\n- xfs: make sure maxlen is still congruent with prod when rounding down (git-fixes).\n- xfs: reserve data and rt quota at the same time (bsc#1203496).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2023-4883,SUSE-SLE-SERVER-12-SP5-2023-4883",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2023_4883-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2023:4883-1",
"url": "https://www.suse.com/support/update/announcement/2023/suse-su-20234883-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2023:4883-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017435.html"
},
{
"category": "self",
"summary": "SUSE Bug 1176950",
"url": "https://bugzilla.suse.com/1176950"
},
{
"category": "self",
"summary": "SUSE Bug 1190208",
"url": "https://bugzilla.suse.com/1190208"
},
{
"category": "self",
"summary": "SUSE Bug 1203496",
"url": "https://bugzilla.suse.com/1203496"
},
{
"category": "self",
"summary": "SUSE Bug 1205462",
"url": "https://bugzilla.suse.com/1205462"
},
{
"category": "self",
"summary": "SUSE Bug 1208787",
"url": "https://bugzilla.suse.com/1208787"
},
{
"category": "self",
"summary": "SUSE Bug 1210780",
"url": "https://bugzilla.suse.com/1210780"
},
{
"category": "self",
"summary": "SUSE Bug 1214037",
"url": "https://bugzilla.suse.com/1214037"
},
{
"category": "self",
"summary": "SUSE Bug 1214285",
"url": "https://bugzilla.suse.com/1214285"
},
{
"category": "self",
"summary": "SUSE Bug 1214408",
"url": "https://bugzilla.suse.com/1214408"
},
{
"category": "self",
"summary": "SUSE Bug 1214764",
"url": "https://bugzilla.suse.com/1214764"
},
{
"category": "self",
"summary": "SUSE Bug 1216031",
"url": "https://bugzilla.suse.com/1216031"
},
{
"category": "self",
"summary": "SUSE Bug 1216058",
"url": "https://bugzilla.suse.com/1216058"
},
{
"category": "self",
"summary": "SUSE Bug 1216259",
"url": "https://bugzilla.suse.com/1216259"
},
{
"category": "self",
"summary": "SUSE Bug 1216584",
"url": "https://bugzilla.suse.com/1216584"
},
{
"category": "self",
"summary": "SUSE Bug 1216759",
"url": "https://bugzilla.suse.com/1216759"
},
{
"category": "self",
"summary": "SUSE Bug 1216965",
"url": "https://bugzilla.suse.com/1216965"
},
{
"category": "self",
"summary": "SUSE Bug 1216976",
"url": "https://bugzilla.suse.com/1216976"
},
{
"category": "self",
"summary": "SUSE Bug 1217036",
"url": "https://bugzilla.suse.com/1217036"
},
{
"category": "self",
"summary": "SUSE Bug 1217087",
"url": "https://bugzilla.suse.com/1217087"
},
{
"category": "self",
"summary": "SUSE Bug 1217206",
"url": "https://bugzilla.suse.com/1217206"
},
{
"category": "self",
"summary": "SUSE Bug 1217519",
"url": "https://bugzilla.suse.com/1217519"
},
{
"category": "self",
"summary": "SUSE Bug 1217525",
"url": "https://bugzilla.suse.com/1217525"
},
{
"category": "self",
"summary": "SUSE Bug 1217603",
"url": "https://bugzilla.suse.com/1217603"
},
{
"category": "self",
"summary": "SUSE Bug 1217604",
"url": "https://bugzilla.suse.com/1217604"
},
{
"category": "self",
"summary": "SUSE Bug 1217607",
"url": "https://bugzilla.suse.com/1217607"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-0461 page",
"url": "https://www.suse.com/security/cve/CVE-2023-0461/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-31083 page",
"url": "https://www.suse.com/security/cve/CVE-2023-31083/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-39197 page",
"url": "https://www.suse.com/security/cve/CVE-2023-39197/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-39198 page",
"url": "https://www.suse.com/security/cve/CVE-2023-39198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45863 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45863/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-45871 page",
"url": "https://www.suse.com/security/cve/CVE-2023-45871/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-5717 page",
"url": "https://www.suse.com/security/cve/CVE-2023-5717/"
}
],
"title": "Security update for the Linux Kernel",
"tracking": {
"current_release_date": "2023-12-15T10:41:00Z",
"generator": {
"date": "2023-12-15T10:41:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2023:4883-1",
"initial_release_date": "2023-12-15T10:41:00Z",
"revision_history": [
{
"date": "2023-12-15T10:41:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-devel-azure-4.12.14-16.160.1.noarch",
"product": {
"name": "kernel-devel-azure-4.12.14-16.160.1.noarch",
"product_id": "kernel-devel-azure-4.12.14-16.160.1.noarch"
}
},
{
"category": "product_version",
"name": "kernel-source-azure-4.12.14-16.160.1.noarch",
"product": {
"name": "kernel-source-azure-4.12.14-16.160.1.noarch",
"product_id": "kernel-source-azure-4.12.14-16.160.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "cluster-md-kmp-azure-4.12.14-16.160.1.x86_64",
"product": {
"name": "cluster-md-kmp-azure-4.12.14-16.160.1.x86_64",
"product_id": "cluster-md-kmp-azure-4.12.14-16.160.1.x86_64"
}
},
{
"category": "product_version",
"name": "dlm-kmp-azure-4.12.14-16.160.1.x86_64",
"product": {
"name": "dlm-kmp-azure-4.12.14-16.160.1.x86_64",
"product_id": "dlm-kmp-azure-4.12.14-16.160.1.x86_64"
}
},
{
"category": "product_version",
"name": "gfs2-kmp-azure-4.12.14-16.160.1.x86_64",
"product": {
"name": "gfs2-kmp-azure-4.12.14-16.160.1.x86_64",
"product_id": "gfs2-kmp-azure-4.12.14-16.160.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-4.12.14-16.160.1.x86_64",
"product": {
"name": "kernel-azure-4.12.14-16.160.1.x86_64",
"product_id": "kernel-azure-4.12.14-16.160.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-base-4.12.14-16.160.1.x86_64",
"product": {
"name": "kernel-azure-base-4.12.14-16.160.1.x86_64",
"product_id": "kernel-azure-base-4.12.14-16.160.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-devel-4.12.14-16.160.1.x86_64",
"product": {
"name": "kernel-azure-devel-4.12.14-16.160.1.x86_64",
"product_id": "kernel-azure-devel-4.12.14-16.160.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-extra-4.12.14-16.160.1.x86_64",
"product": {
"name": "kernel-azure-extra-4.12.14-16.160.1.x86_64",
"product_id": "kernel-azure-extra-4.12.14-16.160.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-azure-kgraft-devel-4.12.14-16.160.1.x86_64",
"product": {
"name": "kernel-azure-kgraft-devel-4.12.14-16.160.1.x86_64",
"product_id": "kernel-azure-kgraft-devel-4.12.14-16.160.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-syms-azure-4.12.14-16.160.1.x86_64",
"product": {
"name": "kernel-syms-azure-4.12.14-16.160.1.x86_64",
"product_id": "kernel-syms-azure-4.12.14-16.160.1.x86_64"
}
},
{
"category": "product_version",
"name": "kselftests-kmp-azure-4.12.14-16.160.1.x86_64",
"product": {
"name": "kselftests-kmp-azure-4.12.14-16.160.1.x86_64",
"product_id": "kselftests-kmp-azure-4.12.14-16.160.1.x86_64"
}
},
{
"category": "product_version",
"name": "ocfs2-kmp-azure-4.12.14-16.160.1.x86_64",
"product": {
"name": "ocfs2-kmp-azure-4.12.14-16.160.1.x86_64",
"product_id": "ocfs2-kmp-azure-4.12.14-16.160.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sles_sap:12:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-4.12.14-16.160.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64"
},
"product_reference": "kernel-azure-4.12.14-16.160.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-base-4.12.14-16.160.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64"
},
"product_reference": "kernel-azure-base-4.12.14-16.160.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-4.12.14-16.160.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64"
},
"product_reference": "kernel-azure-devel-4.12.14-16.160.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-4.12.14-16.160.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch"
},
"product_reference": "kernel-devel-azure-4.12.14-16.160.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-4.12.14-16.160.1.noarch as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch"
},
"product_reference": "kernel-source-azure-4.12.14-16.160.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-4.12.14-16.160.1.x86_64 as component of SUSE Linux Enterprise Server 12 SP5",
"product_id": "SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
},
"product_reference": "kernel-syms-azure-4.12.14-16.160.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-4.12.14-16.160.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64"
},
"product_reference": "kernel-azure-4.12.14-16.160.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-base-4.12.14-16.160.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64"
},
"product_reference": "kernel-azure-base-4.12.14-16.160.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-azure-devel-4.12.14-16.160.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64"
},
"product_reference": "kernel-azure-devel-4.12.14-16.160.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-devel-azure-4.12.14-16.160.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch"
},
"product_reference": "kernel-devel-azure-4.12.14-16.160.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-source-azure-4.12.14-16.160.1.noarch as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch"
},
"product_reference": "kernel-source-azure-4.12.14-16.160.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-syms-azure-4.12.14-16.160.1.x86_64 as component of SUSE Linux Enterprise Server for SAP Applications 12 SP5",
"product_id": "SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
},
"product_reference": "kernel-syms-azure-4.12.14-16.160.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Server for SAP Applications 12 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-0461",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-0461"
}
],
"notes": [
{
"category": "general",
"text": "There is a use-after-free vulnerability in the Linux Kernel which can be exploited to achieve local privilege escalation. To reach the vulnerability kernel configuration flag CONFIG_TLS or CONFIG_XFRM_ESPINTCP has to be configured, but the operation does not require any privilege.\n\nThere is a use-after-free bug of icsk_ulp_data of a struct inet_connection_sock.\n\nWhen CONFIG_TLS is enabled, user can install a tls context (struct tls_context) on a connected tcp socket. The context is not cleared if this socket is disconnected and reused as a listener. If a new socket is created from the listener, the context is inherited and vulnerable.\n\nThe setsockopt TCP_ULP operation does not require any privilege.\n\nWe recommend upgrading past commit 2c02d41d71f90a5168391b6a5f2954112ba2307c",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-0461",
"url": "https://www.suse.com/security/cve/CVE-2023-0461"
},
{
"category": "external",
"summary": "SUSE Bug 1208787 for CVE-2023-0461",
"url": "https://bugzilla.suse.com/1208787"
},
{
"category": "external",
"summary": "SUSE Bug 1208911 for CVE-2023-0461",
"url": "https://bugzilla.suse.com/1208911"
},
{
"category": "external",
"summary": "SUSE Bug 1211833 for CVE-2023-0461",
"url": "https://bugzilla.suse.com/1211833"
},
{
"category": "external",
"summary": "SUSE Bug 1217079 for CVE-2023-0461",
"url": "https://bugzilla.suse.com/1217079"
},
{
"category": "external",
"summary": "SUSE Bug 1218514 for CVE-2023-0461",
"url": "https://bugzilla.suse.com/1218514"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-12-15T10:41:00Z",
"details": "important"
}
],
"title": "CVE-2023-0461"
},
{
"cve": "CVE-2023-31083",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-31083"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in drivers/bluetooth/hci_ldisc.c in the Linux kernel 6.2. In hci_uart_tty_ioctl, there is a race condition between HCIUARTSETPROTO and HCIUARTGETPROTO. HCI_UART_PROTO_SET is set before hu-\u003eproto is set. A NULL pointer dereference may occur.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-31083",
"url": "https://www.suse.com/security/cve/CVE-2023-31083"
},
{
"category": "external",
"summary": "SUSE Bug 1210780 for CVE-2023-31083",
"url": "https://bugzilla.suse.com/1210780"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-12-15T10:41:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-31083"
},
{
"cve": "CVE-2023-39197",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-39197"
}
],
"notes": [
{
"category": "general",
"text": "An out-of-bounds read vulnerability was found in Netfilter Connection Tracking (conntrack) in the Linux kernel. This flaw allows a remote user to disclose sensitive information via the DCCP protocol.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-39197",
"url": "https://www.suse.com/security/cve/CVE-2023-39197"
},
{
"category": "external",
"summary": "SUSE Bug 1216976 for CVE-2023-39197",
"url": "https://bugzilla.suse.com/1216976"
},
{
"category": "external",
"summary": "SUSE Bug 1220015 for CVE-2023-39197",
"url": "https://bugzilla.suse.com/1220015"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:N/A:N",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-12-15T10:41:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-39197"
},
{
"cve": "CVE-2023-39198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-39198"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-39198",
"url": "https://www.suse.com/security/cve/CVE-2023-39198"
},
{
"category": "external",
"summary": "SUSE Bug 1216965 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1216965"
},
{
"category": "external",
"summary": "SUSE Bug 1217116 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "external",
"summary": "SUSE Bug 1219703 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1219703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-12-15T10:41:00Z",
"details": "important"
}
],
"title": "CVE-2023-39198"
},
{
"cve": "CVE-2023-45863",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45863"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in lib/kobject.c in the Linux kernel before 6.2.3. With root access, an attacker can trigger a race condition that results in a fill_kobj_path out-of-bounds write.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45863",
"url": "https://www.suse.com/security/cve/CVE-2023-45863"
},
{
"category": "external",
"summary": "SUSE Bug 1216058 for CVE-2023-45863",
"url": "https://bugzilla.suse.com/1216058"
},
{
"category": "external",
"summary": "SUSE Bug 1220015 for CVE-2023-45863",
"url": "https://bugzilla.suse.com/1220015"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.4,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-12-15T10:41:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-45863"
},
{
"cve": "CVE-2023-45871",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-45871"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in drivers/net/ethernet/intel/igb/igb_main.c in the IGB driver in the Linux kernel before 6.5.3. A buffer size may not be adequate for frames larger than the MTU.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-45871",
"url": "https://www.suse.com/security/cve/CVE-2023-45871"
},
{
"category": "external",
"summary": "SUSE Bug 1216259 for CVE-2023-45871",
"url": "https://bugzilla.suse.com/1216259"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 5.3,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-12-15T10:41:00Z",
"details": "moderate"
}
],
"title": "CVE-2023-45871"
},
{
"cve": "CVE-2023-5717",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-5717"
}
],
"notes": [
{
"category": "general",
"text": "A heap out-of-bounds write vulnerability in the Linux kernel\u0027s Linux Kernel Performance Events (perf) component can be exploited to achieve local privilege escalation.\n\nIf perf_read_group() is called while an event\u0027s sibling_list is smaller than its child\u0027s sibling_list, it can increment or write to memory locations outside of the allocated buffer.\n\nWe recommend upgrading past commit 32671e3799ca2e4590773fd0e63aaa4229e50c06.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-5717",
"url": "https://www.suse.com/security/cve/CVE-2023-5717"
},
{
"category": "external",
"summary": "SUSE Bug 1216584 for CVE-2023-5717",
"url": "https://bugzilla.suse.com/1216584"
},
{
"category": "external",
"summary": "SUSE Bug 1216644 for CVE-2023-5717",
"url": "https://bugzilla.suse.com/1216644"
},
{
"category": "external",
"summary": "SUSE Bug 1217557 for CVE-2023-5717",
"url": "https://bugzilla.suse.com/1217557"
},
{
"category": "external",
"summary": "SUSE Bug 1219697 for CVE-2023-5717",
"url": "https://bugzilla.suse.com/1219697"
},
{
"category": "external",
"summary": "SUSE Bug 1220191 for CVE-2023-5717",
"url": "https://bugzilla.suse.com/1220191"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-base-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-azure-devel-4.12.14-16.160.1.x86_64",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-devel-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-source-azure-4.12.14-16.160.1.noarch",
"SUSE Linux Enterprise Server for SAP Applications 12 SP5:kernel-syms-azure-4.12.14-16.160.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2023-12-15T10:41:00Z",
"details": "important"
}
],
"title": "CVE-2023-5717"
}
]
}
SUSE-SU-2024:0622-1
Vulnerability from csaf_suse - Published: 2024-02-26 19:33 - Updated: 2024-02-26 19:33Summary
Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5)
Description of the patch: This update for the Linux Kernel 5.14.21-150500_13_11 fixes several issues.
The following security issues were fixed:
- CVE-2023-4921: Fixed a use-after-free vulnerability in the QFQ network scheduler which could be exploited to achieve local privilege escalation (bsc#1215300).
- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).
- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).
Patchnames: SUSE-2024-622,SUSE-2024-623,SUSE-SLE-Module-Live-Patching-15-SP5-2024-623
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
1 product
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
30 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 5.14.21-150500_13_11 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2023-4921: Fixed a use-after-free vulnerability in the QFQ network scheduler which could be exploited to achieve local privilege escalation (bsc#1215300).\n- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).\n- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-622,SUSE-2024-623,SUSE-SLE-Module-Live-Patching-15-SP5-2024-623",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_0622-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:0622-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20240622-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:0622-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018010.html"
},
{
"category": "self",
"summary": "SUSE Bug 1215300",
"url": "https://bugzilla.suse.com/1215300"
},
{
"category": "self",
"summary": "SUSE Bug 1217116",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "self",
"summary": "SUSE Bug 1218733",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-39198 page",
"url": "https://www.suse.com/security/cve/CVE-2023-39198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4921 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-51780 page",
"url": "https://www.suse.com/security/cve/CVE-2023-51780/"
}
],
"title": "Security update for the Linux Kernel RT (Live Patch 3 for SLE 15 SP5)",
"tracking": {
"current_release_date": "2024-02-26T19:33:34Z",
"generator": {
"date": "2024-02-26T19:33:34Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:0622-1",
"initial_release_date": "2024-02-26T19:33:34Z",
"revision_history": [
{
"date": "2024-02-26T19:33:34Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_13_5-rt-7-150500.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150500_13_5-rt-7-150500.2.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150500_13_5-rt-7-150500.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64"
},
"product_reference": "kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-39198"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-39198",
"url": "https://www.suse.com/security/cve/CVE-2023-39198"
},
{
"category": "external",
"summary": "SUSE Bug 1216965 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1216965"
},
{
"category": "external",
"summary": "SUSE Bug 1217116 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "external",
"summary": "SUSE Bug 1219703 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1219703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-26T19:33:34Z",
"details": "important"
}
],
"title": "CVE-2023-39198"
},
{
"cve": "CVE-2023-4921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4921"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability in the Linux kernel\u0027s net/sched: sch_qfq component can be exploited to achieve local privilege escalation.\n\nWhen the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfq_dequeue() due to the incorrect .peek handler of sch_plug and lack of error checking in agg_dequeue().\n\nWe recommend upgrading past commit 8fc134fee27f2263988ae38920bc03da416b03d8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4921",
"url": "https://www.suse.com/security/cve/CVE-2023-4921"
},
{
"category": "external",
"summary": "SUSE Bug 1215275 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1215275"
},
{
"category": "external",
"summary": "SUSE Bug 1215300 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1215300"
},
{
"category": "external",
"summary": "SUSE Bug 1217444 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1217444"
},
{
"category": "external",
"summary": "SUSE Bug 1217531 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1217531"
},
{
"category": "external",
"summary": "SUSE Bug 1220906 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1220906"
},
{
"category": "external",
"summary": "SUSE Bug 1223091 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1223091"
},
{
"category": "external",
"summary": "SUSE Bug 1224418 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1224418"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-26T19:33:34Z",
"details": "important"
}
],
"title": "CVE-2023-4921"
},
{
"cve": "CVE-2023-51780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-51780"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-51780",
"url": "https://www.suse.com/security/cve/CVE-2023-51780"
},
{
"category": "external",
"summary": "SUSE Bug 1218730 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218730"
},
{
"category": "external",
"summary": "SUSE Bug 1218733 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "external",
"summary": "SUSE Bug 1220191 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1220191"
},
{
"category": "external",
"summary": "SUSE Bug 1221578 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221578"
},
{
"category": "external",
"summary": "SUSE Bug 1221598 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221598"
},
{
"category": "external",
"summary": "SUSE Bug 1224298 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224298"
},
{
"category": "external",
"summary": "SUSE Bug 1224878 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_13_11-rt-6-150500.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-26T19:33:34Z",
"details": "important"
}
],
"title": "CVE-2023-51780"
}
]
}
SUSE-SU-2024:0655-1
Vulnerability from csaf_suse - Published: 2024-02-28 13:04 - Updated: 2024-02-28 13:04Summary
Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP5)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP5)
Description of the patch: This update for the Linux Kernel 5.14.21-150500_11 fixes several issues.
The following security issues were fixed:
- CVE-2023-4921: Fixed a use-after-free vulnerability in the QFQ network scheduler which could be exploited to achieve local privilege escalation (bsc#1215300).
- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).
- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).
Patchnames: SUSE-2024-654,SUSE-2024-655,SUSE-SLE-Live-Patching-12-SP5-2024-655,SUSE-SLE-Module-Live-Patching-15-SP5-2024-654
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
4 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
30 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP5)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 5.14.21-150500_11 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2023-4921: Fixed a use-after-free vulnerability in the QFQ network scheduler which could be exploited to achieve local privilege escalation (bsc#1215300).\n- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).\n- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-654,SUSE-2024-655,SUSE-SLE-Live-Patching-12-SP5-2024-655,SUSE-SLE-Module-Live-Patching-15-SP5-2024-654",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_0655-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:0655-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20240655-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:0655-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018060.html"
},
{
"category": "self",
"summary": "SUSE Bug 1215300",
"url": "https://bugzilla.suse.com/1215300"
},
{
"category": "self",
"summary": "SUSE Bug 1217116",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "self",
"summary": "SUSE Bug 1218733",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-39198 page",
"url": "https://www.suse.com/security/cve/CVE-2023-39198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4921 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-51780 page",
"url": "https://www.suse.com/security/cve/CVE-2023-51780/"
}
],
"title": "Security update for the Linux Kernel RT (Live Patch 0 for SLE 15 SP5)",
"tracking": {
"current_release_date": "2024-02-28T13:04:28Z",
"generator": {
"date": "2024-02-28T13:04:28Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:0655-1",
"initial_release_date": "2024-02-28T13:04:28Z",
"revision_history": [
{
"date": "2024-02-28T13:04:28Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le",
"product": {
"name": "kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le",
"product_id": "kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_153-default-10-2.1.s390x",
"product": {
"name": "kgraft-patch-4_12_14-122_153-default-10-2.1.s390x",
"product_id": "kgraft-patch-4_12_14-122_153-default-10-2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64",
"product": {
"name": "kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64",
"product_id": "kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le"
},
"product_reference": "kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_153-default-10-2.1.s390x as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x"
},
"product_reference": "kgraft-patch-4_12_14-122_153-default-10-2.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64"
},
"product_reference": "kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64"
},
"product_reference": "kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-39198"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-39198",
"url": "https://www.suse.com/security/cve/CVE-2023-39198"
},
{
"category": "external",
"summary": "SUSE Bug 1216965 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1216965"
},
{
"category": "external",
"summary": "SUSE Bug 1217116 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "external",
"summary": "SUSE Bug 1219703 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1219703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-28T13:04:28Z",
"details": "important"
}
],
"title": "CVE-2023-39198"
},
{
"cve": "CVE-2023-4921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4921"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability in the Linux kernel\u0027s net/sched: sch_qfq component can be exploited to achieve local privilege escalation.\n\nWhen the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfq_dequeue() due to the incorrect .peek handler of sch_plug and lack of error checking in agg_dequeue().\n\nWe recommend upgrading past commit 8fc134fee27f2263988ae38920bc03da416b03d8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4921",
"url": "https://www.suse.com/security/cve/CVE-2023-4921"
},
{
"category": "external",
"summary": "SUSE Bug 1215275 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1215275"
},
{
"category": "external",
"summary": "SUSE Bug 1215300 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1215300"
},
{
"category": "external",
"summary": "SUSE Bug 1217444 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1217444"
},
{
"category": "external",
"summary": "SUSE Bug 1217531 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1217531"
},
{
"category": "external",
"summary": "SUSE Bug 1220906 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1220906"
},
{
"category": "external",
"summary": "SUSE Bug 1223091 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1223091"
},
{
"category": "external",
"summary": "SUSE Bug 1224418 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1224418"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-28T13:04:28Z",
"details": "important"
}
],
"title": "CVE-2023-4921"
},
{
"cve": "CVE-2023-51780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-51780"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-51780",
"url": "https://www.suse.com/security/cve/CVE-2023-51780"
},
{
"category": "external",
"summary": "SUSE Bug 1218730 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218730"
},
{
"category": "external",
"summary": "SUSE Bug 1218733 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "external",
"summary": "SUSE Bug 1220191 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1220191"
},
{
"category": "external",
"summary": "SUSE Bug 1221578 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221578"
},
{
"category": "external",
"summary": "SUSE Bug 1221598 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221598"
},
{
"category": "external",
"summary": "SUSE Bug 1224298 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224298"
},
{
"category": "external",
"summary": "SUSE Bug 1224878 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_153-default-10-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_11-rt-8-150500.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-28T13:04:28Z",
"details": "important"
}
],
"title": "CVE-2023-51780"
}
]
}
SUSE-SU-2024:0662-1
Vulnerability from csaf_suse - Published: 2024-02-28 19:03 - Updated: 2024-02-28 19:03Summary
Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP2)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP2)
Description of the patch: This update for the Linux Kernel 5.3.18-150200_24_166 fixes several issues.
The following security issues were fixed:
- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).
- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).
Patchnames: SUSE-2024-662,SUSE-SLE-Live-Patching-12-SP5-2024-662,SUSE-SLE-Module-Live-Patching-15-SP2-2024-678
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
6 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
20 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP2)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 5.3.18-150200_24_166 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).\n- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-662,SUSE-SLE-Live-Patching-12-SP5-2024-662,SUSE-SLE-Module-Live-Patching-15-SP2-2024-678",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_0662-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:0662-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20240662-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:0662-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018065.html"
},
{
"category": "self",
"summary": "SUSE Bug 1217116",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "self",
"summary": "SUSE Bug 1218733",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-39198 page",
"url": "https://www.suse.com/security/cve/CVE-2023-39198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-51780 page",
"url": "https://www.suse.com/security/cve/CVE-2023-51780/"
}
],
"title": "Security update for the Linux Kernel (Live Patch 41 for SLE 15 SP2)",
"tracking": {
"current_release_date": "2024-02-28T19:03:39Z",
"generator": {
"date": "2024-02-28T19:03:39Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:0662-1",
"initial_release_date": "2024-02-28T19:03:39Z",
"revision_history": [
{
"date": "2024-02-28T19:03:39Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le",
"product": {
"name": "kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le",
"product_id": "kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le",
"product_id": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_179-default-4-2.1.s390x",
"product": {
"name": "kgraft-patch-4_12_14-122_179-default-4-2.1.s390x",
"product_id": "kgraft-patch-4_12_14-122_179-default-4-2.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x",
"product_id": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64",
"product": {
"name": "kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64",
"product_id": "kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64",
"product_id": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP2",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp2"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le"
},
"product_reference": "kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_179-default-4-2.1.s390x as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.s390x"
},
"product_reference": "kgraft-patch-4_12_14-122_179-default-4-2.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64"
},
"product_reference": "kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP2",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le"
},
"product_reference": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP2",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x"
},
"product_reference": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP2",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64"
},
"product_reference": "kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-39198"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-39198",
"url": "https://www.suse.com/security/cve/CVE-2023-39198"
},
{
"category": "external",
"summary": "SUSE Bug 1216965 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1216965"
},
{
"category": "external",
"summary": "SUSE Bug 1217116 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "external",
"summary": "SUSE Bug 1219703 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1219703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-28T19:03:39Z",
"details": "important"
}
],
"title": "CVE-2023-39198"
},
{
"cve": "CVE-2023-51780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-51780"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-51780",
"url": "https://www.suse.com/security/cve/CVE-2023-51780"
},
{
"category": "external",
"summary": "SUSE Bug 1218730 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218730"
},
{
"category": "external",
"summary": "SUSE Bug 1218733 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "external",
"summary": "SUSE Bug 1220191 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1220191"
},
{
"category": "external",
"summary": "SUSE Bug 1221578 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221578"
},
{
"category": "external",
"summary": "SUSE Bug 1221598 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221598"
},
{
"category": "external",
"summary": "SUSE Bug 1224298 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224298"
},
{
"category": "external",
"summary": "SUSE Bug 1224878 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_179-default-4-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_166-default-5-150200.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-28T19:03:39Z",
"details": "important"
}
],
"title": "CVE-2023-51780"
}
]
}
SUSE-SU-2024:0666-1
Vulnerability from csaf_suse - Published: 2024-02-28 18:03 - Updated: 2024-02-28 18:03Summary
Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP4)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP4)
Description of the patch: This update for the Linux Kernel 5.14.21-150400_24_63 fixes several issues.
The following security issues were fixed:
- CVE-2023-4921: Fixed a use-after-free vulnerability in the QFQ network scheduler which could be exploited to achieve local privilege escalation (bsc#1215300).
- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).
- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).
Patchnames: SUSE-2024-666,SUSE-2024-667,SUSE-SLE-Live-Patching-12-SP5-2024-666,SUSE-SLE-Module-Live-Patching-15-SP2-2024-671,SUSE-SLE-Module-Live-Patching-15-SP4-2024-667
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
9 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
9 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
9 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
30 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP4)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 5.14.21-150400_24_63 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2023-4921: Fixed a use-after-free vulnerability in the QFQ network scheduler which could be exploited to achieve local privilege escalation (bsc#1215300).\n- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).\n- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-666,SUSE-2024-667,SUSE-SLE-Live-Patching-12-SP5-2024-666,SUSE-SLE-Module-Live-Patching-15-SP2-2024-671,SUSE-SLE-Module-Live-Patching-15-SP4-2024-667",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_0666-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:0666-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20240666-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:0666-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018066.html"
},
{
"category": "self",
"summary": "SUSE Bug 1215300",
"url": "https://bugzilla.suse.com/1215300"
},
{
"category": "self",
"summary": "SUSE Bug 1217116",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "self",
"summary": "SUSE Bug 1218733",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-39198 page",
"url": "https://www.suse.com/security/cve/CVE-2023-39198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4921 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-51780 page",
"url": "https://www.suse.com/security/cve/CVE-2023-51780/"
}
],
"title": "Security update for the Linux Kernel (Live Patch 12 for SLE 15 SP4)",
"tracking": {
"current_release_date": "2024-02-28T18:03:43Z",
"generator": {
"date": "2024-02-28T18:03:43Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:0666-1",
"initial_release_date": "2024-02-28T18:03:43Z",
"revision_history": [
{
"date": "2024-02-28T18:03:43Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le",
"product": {
"name": "kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le",
"product_id": "kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le",
"product_id": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le",
"product_id": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_162-default-8-2.1.s390x",
"product": {
"name": "kgraft-patch-4_12_14-122_162-default-8-2.1.s390x",
"product_id": "kgraft-patch-4_12_14-122_162-default-8-2.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x",
"product_id": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x",
"product_id": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64",
"product": {
"name": "kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64",
"product_id": "kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64",
"product_id": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP2",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP2",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP4",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp4"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le"
},
"product_reference": "kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_162-default-8-2.1.s390x as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x"
},
"product_reference": "kgraft-patch-4_12_14-122_162-default-8-2.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64"
},
"product_reference": "kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP2",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le"
},
"product_reference": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP2",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x"
},
"product_reference": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP2",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64"
},
"product_reference": "kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP4",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le"
},
"product_reference": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP4",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x"
},
"product_reference": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP4",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64"
},
"product_reference": "kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-39198"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-39198",
"url": "https://www.suse.com/security/cve/CVE-2023-39198"
},
{
"category": "external",
"summary": "SUSE Bug 1216965 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1216965"
},
{
"category": "external",
"summary": "SUSE Bug 1217116 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "external",
"summary": "SUSE Bug 1219703 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1219703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-28T18:03:43Z",
"details": "important"
}
],
"title": "CVE-2023-39198"
},
{
"cve": "CVE-2023-4921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4921"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability in the Linux kernel\u0027s net/sched: sch_qfq component can be exploited to achieve local privilege escalation.\n\nWhen the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfq_dequeue() due to the incorrect .peek handler of sch_plug and lack of error checking in agg_dequeue().\n\nWe recommend upgrading past commit 8fc134fee27f2263988ae38920bc03da416b03d8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4921",
"url": "https://www.suse.com/security/cve/CVE-2023-4921"
},
{
"category": "external",
"summary": "SUSE Bug 1215275 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1215275"
},
{
"category": "external",
"summary": "SUSE Bug 1215300 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1215300"
},
{
"category": "external",
"summary": "SUSE Bug 1217444 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1217444"
},
{
"category": "external",
"summary": "SUSE Bug 1217531 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1217531"
},
{
"category": "external",
"summary": "SUSE Bug 1220906 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1220906"
},
{
"category": "external",
"summary": "SUSE Bug 1223091 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1223091"
},
{
"category": "external",
"summary": "SUSE Bug 1224418 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1224418"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-28T18:03:43Z",
"details": "important"
}
],
"title": "CVE-2023-4921"
},
{
"cve": "CVE-2023-51780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-51780"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-51780",
"url": "https://www.suse.com/security/cve/CVE-2023-51780"
},
{
"category": "external",
"summary": "SUSE Bug 1218730 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218730"
},
{
"category": "external",
"summary": "SUSE Bug 1218733 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "external",
"summary": "SUSE Bug 1220191 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1220191"
},
{
"category": "external",
"summary": "SUSE Bug 1221578 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221578"
},
{
"category": "external",
"summary": "SUSE Bug 1221598 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221598"
},
{
"category": "external",
"summary": "SUSE Bug 1224298 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224298"
},
{
"category": "external",
"summary": "SUSE Bug 1224878 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_162-default-8-2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP2:kernel-livepatch-5_3_18-150200_24_145-default-11-150200.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_63-default-10-150400.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-28T18:03:43Z",
"details": "important"
}
],
"title": "CVE-2023-51780"
}
]
}
SUSE-SU-2024:0698-1
Vulnerability from csaf_suse - Published: 2024-02-29 07:35 - Updated: 2024-02-29 07:35Summary
Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP5)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP5)
Description of the patch: This update for the Linux Kernel 5.14.21-150500_55_19 fixes several issues.
The following security issues were fixed:
- CVE-2023-4921: Fixed a use-after-free vulnerability in the QFQ network scheduler which could be exploited to achieve local privilege escalation (bsc#1215300).
- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).
- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).
Patchnames: SUSE-2024-683,SUSE-2024-684,SUSE-2024-696,SUSE-2024-698,SUSE-2024-699,SUSE-2024-710,SUSE-2024-711,SUSE-2024-712,SUSE-2024-713,SUSE-SLE-Live-Patching-12-SP5-2024-693,SUSE-SLE-Module-Live-Patching-15-SP3-2024-698,SUSE-SLE-Module-Live-Patching-15-SP4-2024-682,SUSE-SLE-Module-Live-Patching-15-SP5-2024-713
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
12 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
30 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP5)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 5.14.21-150500_55_19 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2023-4921: Fixed a use-after-free vulnerability in the QFQ network scheduler which could be exploited to achieve local privilege escalation (bsc#1215300).\n- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).\n- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-683,SUSE-2024-684,SUSE-2024-696,SUSE-2024-698,SUSE-2024-699,SUSE-2024-710,SUSE-2024-711,SUSE-2024-712,SUSE-2024-713,SUSE-SLE-Live-Patching-12-SP5-2024-693,SUSE-SLE-Module-Live-Patching-15-SP3-2024-698,SUSE-SLE-Module-Live-Patching-15-SP4-2024-682,SUSE-SLE-Module-Live-Patching-15-SP5-2024-713",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_0698-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:0698-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20240698-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:0698-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018070.html"
},
{
"category": "self",
"summary": "SUSE Bug 1215300",
"url": "https://bugzilla.suse.com/1215300"
},
{
"category": "self",
"summary": "SUSE Bug 1217116",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "self",
"summary": "SUSE Bug 1218733",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-39198 page",
"url": "https://www.suse.com/security/cve/CVE-2023-39198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4921 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-51780 page",
"url": "https://www.suse.com/security/cve/CVE-2023-51780/"
}
],
"title": "Security update for the Linux Kernel (Live Patch 3 for SLE 15 SP5)",
"tracking": {
"current_release_date": "2024-02-29T07:35:35Z",
"generator": {
"date": "2024-02-29T07:35:35Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:0698-1",
"initial_release_date": "2024-02-29T07:35:35Z",
"revision_history": [
{
"date": "2024-02-29T07:35:35Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_60-default-10-150400.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_60-default-10-150400.2.1.ppc64le",
"product_id": "kernel-livepatch-5_14_21-150400_24_60-default-10-150400.2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_66-default-8-150400.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_66-default-8-150400.2.1.ppc64le",
"product_id": "kernel-livepatch-5_14_21-150400_24_66-default-8-150400.2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_109-default-13-150300.2.2.ppc64le",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_109-default-13-150300.2.2.ppc64le",
"product_id": "kernel-livepatch-5_3_18-150300_59_109-default-13-150300.2.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le",
"product_id": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_118-default-10-150300.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_118-default-10-150300.2.1.ppc64le",
"product_id": "kernel-livepatch-5_3_18-150300_59_118-default-10-150300.2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_69-default-7-150400.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_69-default-7-150400.2.1.ppc64le",
"product_id": "kernel-livepatch-5_14_21-150400_24_69-default-7-150400.2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_53-default-8-150500.3.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_14_21-150500_53-default-8-150500.3.1.ppc64le",
"product_id": "kernel-livepatch-5_14_21-150500_53-default-8-150500.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_12-default-7-150500.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_12-default-7-150500.2.1.ppc64le",
"product_id": "kernel-livepatch-5_14_21-150500_55_12-default-7-150500.2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le",
"product_id": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le",
"product": {
"name": "kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le",
"product_id": "kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le",
"product_id": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_60-default-10-150400.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_60-default-10-150400.2.1.s390x",
"product_id": "kernel-livepatch-5_14_21-150400_24_60-default-10-150400.2.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_66-default-8-150400.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_66-default-8-150400.2.1.s390x",
"product_id": "kernel-livepatch-5_14_21-150400_24_66-default-8-150400.2.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_109-default-13-150300.2.2.s390x",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_109-default-13-150300.2.2.s390x",
"product_id": "kernel-livepatch-5_3_18-150300_59_109-default-13-150300.2.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x",
"product_id": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_118-default-10-150300.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_118-default-10-150300.2.1.s390x",
"product_id": "kernel-livepatch-5_3_18-150300_59_118-default-10-150300.2.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_69-default-7-150400.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_69-default-7-150400.2.1.s390x",
"product_id": "kernel-livepatch-5_14_21-150400_24_69-default-7-150400.2.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_53-default-8-150500.3.1.s390x",
"product": {
"name": "kernel-livepatch-5_14_21-150500_53-default-8-150500.3.1.s390x",
"product_id": "kernel-livepatch-5_14_21-150500_53-default-8-150500.3.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_12-default-7-150500.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_12-default-7-150500.2.1.s390x",
"product_id": "kernel-livepatch-5_14_21-150500_55_12-default-7-150500.2.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x",
"product_id": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x"
}
},
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_147-default-12-2.2.s390x",
"product": {
"name": "kgraft-patch-4_12_14-122_147-default-12-2.2.s390x",
"product_id": "kgraft-patch-4_12_14-122_147-default-12-2.2.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x",
"product_id": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_60-default-10-150400.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_60-default-10-150400.2.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150400_24_60-default-10-150400.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_66-default-8-150400.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_66-default-8-150400.2.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150400_24_66-default-8-150400.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_109-default-13-150300.2.2.x86_64",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_109-default-13-150300.2.2.x86_64",
"product_id": "kernel-livepatch-5_3_18-150300_59_109-default-13-150300.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_109-preempt-13-150300.2.2.x86_64",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_109-preempt-13-150300.2.2.x86_64",
"product_id": "kernel-livepatch-5_3_18-150300_59_109-preempt-13-150300.2.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64",
"product_id": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_115-preempt-11-150300.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_115-preempt-11-150300.2.1.x86_64",
"product_id": "kernel-livepatch-5_3_18-150300_59_115-preempt-11-150300.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_118-default-10-150300.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_118-default-10-150300.2.1.x86_64",
"product_id": "kernel-livepatch-5_3_18-150300_59_118-default-10-150300.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_118-preempt-10-150300.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_118-preempt-10-150300.2.1.x86_64",
"product_id": "kernel-livepatch-5_3_18-150300_59_118-preempt-10-150300.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_69-default-7-150400.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_69-default-7-150400.2.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150400_24_69-default-7-150400.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_53-default-8-150500.3.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150500_53-default-8-150500.3.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150500_53-default-8-150500.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_12-default-7-150500.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_12-default-7-150500.2.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150500_55_12-default-7-150500.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64",
"product": {
"name": "kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64",
"product_id": "kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 12 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-live-patching:12:sp5"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP3",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp3"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP4",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP4",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP4",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le"
},
"product_reference": "kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_147-default-12-2.2.s390x as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x"
},
"product_reference": "kgraft-patch-4_12_14-122_147-default-12-2.2.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64 as component of SUSE Linux Enterprise Live Patching 12 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64"
},
"product_reference": "kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 12 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP3",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le"
},
"product_reference": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP3",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x"
},
"product_reference": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP3",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64"
},
"product_reference": "kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP4",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le"
},
"product_reference": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP4",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x"
},
"product_reference": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP4",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64"
},
"product_reference": "kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le"
},
"product_reference": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x"
},
"product_reference": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64"
},
"product_reference": "kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-39198"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-39198",
"url": "https://www.suse.com/security/cve/CVE-2023-39198"
},
{
"category": "external",
"summary": "SUSE Bug 1216965 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1216965"
},
{
"category": "external",
"summary": "SUSE Bug 1217116 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "external",
"summary": "SUSE Bug 1219703 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1219703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-29T07:35:35Z",
"details": "important"
}
],
"title": "CVE-2023-39198"
},
{
"cve": "CVE-2023-4921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4921"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability in the Linux kernel\u0027s net/sched: sch_qfq component can be exploited to achieve local privilege escalation.\n\nWhen the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfq_dequeue() due to the incorrect .peek handler of sch_plug and lack of error checking in agg_dequeue().\n\nWe recommend upgrading past commit 8fc134fee27f2263988ae38920bc03da416b03d8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4921",
"url": "https://www.suse.com/security/cve/CVE-2023-4921"
},
{
"category": "external",
"summary": "SUSE Bug 1215275 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1215275"
},
{
"category": "external",
"summary": "SUSE Bug 1215300 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1215300"
},
{
"category": "external",
"summary": "SUSE Bug 1217444 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1217444"
},
{
"category": "external",
"summary": "SUSE Bug 1217531 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1217531"
},
{
"category": "external",
"summary": "SUSE Bug 1220906 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1220906"
},
{
"category": "external",
"summary": "SUSE Bug 1223091 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1223091"
},
{
"category": "external",
"summary": "SUSE Bug 1224418 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1224418"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-29T07:35:35Z",
"details": "important"
}
],
"title": "CVE-2023-4921"
},
{
"cve": "CVE-2023-51780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-51780"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-51780",
"url": "https://www.suse.com/security/cve/CVE-2023-51780"
},
{
"category": "external",
"summary": "SUSE Bug 1218730 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218730"
},
{
"category": "external",
"summary": "SUSE Bug 1218733 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "external",
"summary": "SUSE Bug 1220191 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1220191"
},
{
"category": "external",
"summary": "SUSE Bug 1221578 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221578"
},
{
"category": "external",
"summary": "SUSE Bug 1221598 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221598"
},
{
"category": "external",
"summary": "SUSE Bug 1224298 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224298"
},
{
"category": "external",
"summary": "SUSE Bug 1224878 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.ppc64le",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.s390x",
"SUSE Linux Enterprise Live Patching 12 SP5:kgraft-patch-4_12_14-122_147-default-12-2.2.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_115-default-11-150300.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP4:kernel-livepatch-5_14_21-150400_24_55-default-11-150400.2.1.x86_64",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_19-default-6-150500.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-29T07:35:35Z",
"details": "important"
}
],
"title": "CVE-2023-51780"
}
]
}
SUSE-SU-2024:0705-1
Vulnerability from csaf_suse - Published: 2024-02-29 07:34 - Updated: 2024-02-29 07:34Summary
Security update for the Linux Kernel (Live Patch 37 for SLE 15 SP3)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel (Live Patch 37 for SLE 15 SP3)
Description of the patch: This update for the Linux Kernel 5.3.18-150300_59_138 fixes several issues.
The following security issues were fixed:
- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).
- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).
Patchnames: SUSE-2024-705,SUSE-2024-706,SUSE-SLE-Module-Live-Patching-15-SP3-2024-705
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
20 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel (Live Patch 37 for SLE 15 SP3)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 5.3.18-150300_59_138 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).\n- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-705,SUSE-2024-706,SUSE-SLE-Module-Live-Patching-15-SP3-2024-705",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_0705-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:0705-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20240705-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:0705-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018067.html"
},
{
"category": "self",
"summary": "SUSE Bug 1217116",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "self",
"summary": "SUSE Bug 1218733",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-39198 page",
"url": "https://www.suse.com/security/cve/CVE-2023-39198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-51780 page",
"url": "https://www.suse.com/security/cve/CVE-2023-51780/"
}
],
"title": "Security update for the Linux Kernel (Live Patch 37 for SLE 15 SP3)",
"tracking": {
"current_release_date": "2024-02-29T07:34:38Z",
"generator": {
"date": "2024-02-29T07:34:38Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:0705-1",
"initial_release_date": "2024-02-29T07:34:38Z",
"revision_history": [
{
"date": "2024-02-29T07:34:38Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le",
"product_id": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_141-default-4-150300.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_141-default-4-150300.2.1.ppc64le",
"product_id": "kernel-livepatch-5_3_18-150300_59_141-default-4-150300.2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x",
"product_id": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_141-default-4-150300.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_141-default-4-150300.2.1.s390x",
"product_id": "kernel-livepatch-5_3_18-150300_59_141-default-4-150300.2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64",
"product_id": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_138-preempt-5-150300.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_138-preempt-5-150300.2.1.x86_64",
"product_id": "kernel-livepatch-5_3_18-150300_59_138-preempt-5-150300.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_141-default-4-150300.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_141-default-4-150300.2.1.x86_64",
"product_id": "kernel-livepatch-5_3_18-150300_59_141-default-4-150300.2.1.x86_64"
}
},
{
"category": "product_version",
"name": "kernel-livepatch-5_3_18-150300_59_141-preempt-4-150300.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_3_18-150300_59_141-preempt-4-150300.2.1.x86_64",
"product_id": "kernel-livepatch-5_3_18-150300_59_141-preempt-4-150300.2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP3",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP3",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP3",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le"
},
"product_reference": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP3",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x"
},
"product_reference": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP3",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64"
},
"product_reference": "kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-39198"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-39198",
"url": "https://www.suse.com/security/cve/CVE-2023-39198"
},
{
"category": "external",
"summary": "SUSE Bug 1216965 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1216965"
},
{
"category": "external",
"summary": "SUSE Bug 1217116 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "external",
"summary": "SUSE Bug 1219703 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1219703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-29T07:34:38Z",
"details": "important"
}
],
"title": "CVE-2023-39198"
},
{
"cve": "CVE-2023-51780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-51780"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-51780",
"url": "https://www.suse.com/security/cve/CVE-2023-51780"
},
{
"category": "external",
"summary": "SUSE Bug 1218730 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218730"
},
{
"category": "external",
"summary": "SUSE Bug 1218733 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "external",
"summary": "SUSE Bug 1220191 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1220191"
},
{
"category": "external",
"summary": "SUSE Bug 1221578 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221578"
},
{
"category": "external",
"summary": "SUSE Bug 1221598 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221598"
},
{
"category": "external",
"summary": "SUSE Bug 1224298 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224298"
},
{
"category": "external",
"summary": "SUSE Bug 1224878 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP3:kernel-livepatch-5_3_18-150300_59_138-default-5-150300.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-29T07:34:38Z",
"details": "important"
}
],
"title": "CVE-2023-51780"
}
]
}
SUSE-SU-2024:0727-1
Vulnerability from csaf_suse - Published: 2024-02-29 11:13 - Updated: 2024-02-29 11:13Summary
Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP5)
Severity
Important
Notes
Title of the patch: Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP5)
Description of the patch: This update for the Linux Kernel 5.14.21-150500_55_7 fixes several issues.
The following security issues were fixed:
- CVE-2023-4921: Fixed a use-after-free vulnerability in the QFQ network scheduler which could be exploited to achieve local privilege escalation (bsc#1215300).
- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).
- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).
Patchnames: SUSE-2024-727,SUSE-SLE-Module-Live-Patching-15-SP5-2024-727
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
7.5 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
7.8 (High)
Affected products
Recommended
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x | — |
Vendor Fix
|
|
| Unresolved product id: SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
30 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP5)",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for the Linux Kernel 5.14.21-150500_55_7 fixes several issues.\n\nThe following security issues were fixed:\n\n- CVE-2023-4921: Fixed a use-after-free vulnerability in the QFQ network scheduler which could be exploited to achieve local privilege escalation (bsc#1215300).\n- CVE-2023-39198: Fixed a race condition leading to a use-after-free in qxl_mode_dumb_create() (bsc#1217116).\n- CVE-2023-51780: Fixed a use-after-free in do_vcc_ioctl in net/atm/ioctl.c, because of a vcc_recvmsg race condition (bsc#1218733).\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-2024-727,SUSE-SLE-Module-Live-Patching-15-SP5-2024-727",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2024_0727-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2024:0727-1",
"url": "https://www.suse.com/support/update/announcement/2024/suse-su-20240727-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2024:0727-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018072.html"
},
{
"category": "self",
"summary": "SUSE Bug 1215300",
"url": "https://bugzilla.suse.com/1215300"
},
{
"category": "self",
"summary": "SUSE Bug 1217116",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "self",
"summary": "SUSE Bug 1218733",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-39198 page",
"url": "https://www.suse.com/security/cve/CVE-2023-39198/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-4921 page",
"url": "https://www.suse.com/security/cve/CVE-2023-4921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2023-51780 page",
"url": "https://www.suse.com/security/cve/CVE-2023-51780/"
}
],
"title": "Security update for the Linux Kernel (Live Patch 1 for SLE 15 SP5)",
"tracking": {
"current_release_date": "2024-02-29T11:13:41Z",
"generator": {
"date": "2024-02-29T11:13:41Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2024:0727-1",
"initial_release_date": "2024-02-29T11:13:41Z",
"revision_history": [
{
"date": "2024-02-29T11:13:41Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le",
"product_id": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x",
"product_id": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64",
"product": {
"name": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64",
"product_id": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product": {
"name": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-module-live-patching:15:sp5"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le"
},
"product_reference": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x"
},
"product_reference": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64 as component of SUSE Linux Enterprise Live Patching 15 SP5",
"product_id": "SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64"
},
"product_reference": "kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Live Patching 15 SP5"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39198",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-39198"
}
],
"notes": [
{
"category": "general",
"text": "A race condition was found in the QXL driver in the Linux kernel. The qxl_mode_dumb_create() function dereferences the qobj returned by the qxl_gem_object_create_with_handle(), but the handle is the only one holding a reference to it. This flaw allows an attacker to guess the returned handle value and trigger a use-after-free issue, potentially leading to a denial of service or privilege escalation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-39198",
"url": "https://www.suse.com/security/cve/CVE-2023-39198"
},
{
"category": "external",
"summary": "SUSE Bug 1216965 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1216965"
},
{
"category": "external",
"summary": "SUSE Bug 1217116 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1217116"
},
{
"category": "external",
"summary": "SUSE Bug 1219703 for CVE-2023-39198",
"url": "https://bugzilla.suse.com/1219703"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.5,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:H/PR:H/UI:N/S:C/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-29T11:13:41Z",
"details": "important"
}
],
"title": "CVE-2023-39198"
},
{
"cve": "CVE-2023-4921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-4921"
}
],
"notes": [
{
"category": "general",
"text": "A use-after-free vulnerability in the Linux kernel\u0027s net/sched: sch_qfq component can be exploited to achieve local privilege escalation.\n\nWhen the plug qdisc is used as a class of the qfq qdisc, sending network packets triggers use-after-free in qfq_dequeue() due to the incorrect .peek handler of sch_plug and lack of error checking in agg_dequeue().\n\nWe recommend upgrading past commit 8fc134fee27f2263988ae38920bc03da416b03d8.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-4921",
"url": "https://www.suse.com/security/cve/CVE-2023-4921"
},
{
"category": "external",
"summary": "SUSE Bug 1215275 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1215275"
},
{
"category": "external",
"summary": "SUSE Bug 1215300 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1215300"
},
{
"category": "external",
"summary": "SUSE Bug 1217444 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1217444"
},
{
"category": "external",
"summary": "SUSE Bug 1217531 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1217531"
},
{
"category": "external",
"summary": "SUSE Bug 1220906 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1220906"
},
{
"category": "external",
"summary": "SUSE Bug 1223091 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1223091"
},
{
"category": "external",
"summary": "SUSE Bug 1224418 for CVE-2023-4921",
"url": "https://bugzilla.suse.com/1224418"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-29T11:13:41Z",
"details": "important"
}
],
"title": "CVE-2023-4921"
},
{
"cve": "CVE-2023-51780",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2023-51780"
}
],
"notes": [
{
"category": "general",
"text": "An issue was discovered in the Linux kernel before 6.6.8. do_vcc_ioctl in net/atm/ioctl.c has a use-after-free because of a vcc_recvmsg race condition.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2023-51780",
"url": "https://www.suse.com/security/cve/CVE-2023-51780"
},
{
"category": "external",
"summary": "SUSE Bug 1218730 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218730"
},
{
"category": "external",
"summary": "SUSE Bug 1218733 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1218733"
},
{
"category": "external",
"summary": "SUSE Bug 1220191 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1220191"
},
{
"category": "external",
"summary": "SUSE Bug 1221578 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221578"
},
{
"category": "external",
"summary": "SUSE Bug 1221598 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1221598"
},
{
"category": "external",
"summary": "SUSE Bug 1224298 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224298"
},
{
"category": "external",
"summary": "SUSE Bug 1224878 for CVE-2023-51780",
"url": "https://bugzilla.suse.com/1224878"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"products": [
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.ppc64le",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.s390x",
"SUSE Linux Enterprise Live Patching 15 SP5:kernel-livepatch-5_14_21-150500_55_7-default-7-150500.2.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-02-29T11:13:41Z",
"details": "important"
}
],
"title": "CVE-2023-51780"
}
]
}
WID-SEC-W-2023-2864
Vulnerability from csaf_certbund - Published: 2023-11-08 23:00 - Updated: 2026-02-15 23:00Summary
Linux Kernel: Mehrere Schwachstellen
Severity
Mittel
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Der Kernel stellt den Kern des Linux Betriebssystems dar.
Angriff: Ein Angreifer kann mehrere Schwachstellen im Linux-Kernel ausnutzen, um Informationen offenzulegen, seine Privilegien zu erweitern oder einen Denial-of-Service-Zustand auszulösen.
Betroffene Betriebssysteme: - Linux
Affected products
Known affected
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel <6.5-rc7
Open Source / Linux Kernel
|
<6.5-rc7 | ||
|
Open Source Linux Kernel <6.4.4
Open Source / Linux Kernel
|
<6.4.4 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Dell NetWorker virtual
Dell / NetWorker
|
cpe:/a:dell:networker:virtual
|
virtual | |
|
Dell ECS <3.8.1.1
Dell / ECS
|
<3.8.1.1 | ||
|
Dell NetWorker vProxy <19.14
Dell / NetWorker
|
vProxy <19.14 | ||
|
EMC Avamar
EMC
|
cpe:/a:emc:avamar:-
|
— | |
|
IBM Spectrum Protect Plus 10.1
IBM / Spectrum Protect Plus
|
cpe:/a:ibm:spectrum_protect_plus:10.1
|
10.1 | |
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM QRadar SIEM
IBM
|
cpe:/a:ibm:qradar_siem:-
|
— | |
|
IBM Security Guardium 12.0
IBM / Security Guardium
|
cpe:/a:ibm:security_guardium:12.0
|
12 | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
Affected products
Known affected
14 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Open Source Linux Kernel <6.5-rc7
Open Source / Linux Kernel
|
<6.5-rc7 | ||
|
Open Source Linux Kernel <6.4.4
Open Source / Linux Kernel
|
<6.4.4 | ||
|
Red Hat Enterprise Linux
Red Hat
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Dell NetWorker virtual
Dell / NetWorker
|
cpe:/a:dell:networker:virtual
|
virtual | |
|
Dell ECS <3.8.1.1
Dell / ECS
|
<3.8.1.1 | ||
|
Dell NetWorker vProxy <19.14
Dell / NetWorker
|
vProxy <19.14 | ||
|
EMC Avamar
EMC
|
cpe:/a:emc:avamar:-
|
— | |
|
IBM Spectrum Protect Plus 10.1
IBM / Spectrum Protect Plus
|
cpe:/a:ibm:spectrum_protect_plus:10.1
|
10.1 | |
|
Debian Linux
Debian
|
cpe:/o:debian:debian_linux:-
|
— | |
|
SUSE Linux
SUSE
|
cpe:/o:suse:suse_linux:-
|
— | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
IBM QRadar SIEM
IBM
|
cpe:/a:ibm:qradar_siem:-
|
— | |
|
IBM Security Guardium 12.0
IBM / Security Guardium
|
cpe:/a:ibm:security_guardium:12.0
|
12 | |
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— |
References
73 references
{
"document": {
"aggregate_severity": {
"text": "mittel"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Der Kernel stellt den Kern des Linux Betriebssystems dar.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen im Linux-Kernel ausnutzen, um Informationen offenzulegen, seine Privilegien zu erweitern oder einen Denial-of-Service-Zustand auszul\u00f6sen.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2023-2864 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2864.json"
},
{
"category": "self",
"summary": "WID-SEC-2023-2864 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2864"
},
{
"category": "external",
"summary": "Red Hat Bugzilla \u2013 Bug 2218342",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2023-39197"
},
{
"category": "external",
"summary": "RedHat Customer Portal f\u00fcr CVE-2023-39197 vom 2023-11-08",
"url": "https://access.redhat.com/security/cve/CVE-2023-39197"
},
{
"category": "external",
"summary": "Red Hat Bugzilla \u2013 Bug 2218332",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2023-39198"
},
{
"category": "external",
"summary": "RedHat Customer Portal f\u00fcr CVE-2023-39198 vom 2023-11-08",
"url": "https://access.redhat.com/security/cve/CVE-2023-39198"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6534-1 vom 2023-12-06",
"url": "https://ubuntu.com/security/notices/USN-6534-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6549-1 vom 2023-12-12",
"url": "https://ubuntu.com/security/notices/USN-6549-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6534-2 vom 2023-12-12",
"url": "https://ubuntu.com/security/notices/USN-6534-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6549-2 vom 2023-12-12",
"url": "https://ubuntu.com/security/notices/USN-6549-2"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4782-1 vom 2023-12-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017333.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4784-1 vom 2023-12-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017319.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6534-3 vom 2023-12-13",
"url": "https://ubuntu.com/security/notices/USN-6534-3"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4811-1 vom 2023-12-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017340.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4783-1 vom 2023-12-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017320.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4810-1 vom 2023-12-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017341.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6549-3 vom 2023-12-13",
"url": "https://ubuntu.com/security/notices/USN-6549-3"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4730-1 vom 2023-12-14",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017384.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4732-1 vom 2023-12-14",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017376.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4735-1 vom 2023-12-14",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017380.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4731-1 vom 2023-12-14",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017378.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4733-1 vom 2023-12-14",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017383.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4734-1 vom 2023-12-14",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017379.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4882-1 vom 2023-12-15",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017434.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2023:4883-1 vom 2023-12-15",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2023-December/017435.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6549-4 vom 2024-01-05",
"url": "https://ubuntu.com/security/notices/USN-6549-4"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASKERNEL-5.10-2024-045 vom 2024-01-09",
"url": "https://alas.aws.amazon.com/AL2/ALASKERNEL-5.10-2024-045.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALAS-2024-2391 vom 2024-01-10",
"url": "https://alas.aws.amazon.com/AL2/ALAS-2024-2391.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6549-5 vom 2024-01-10",
"url": "https://ubuntu.com/security/notices/USN-6549-5"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:0112-1 vom 2024-01-17",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-January/017672.html"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASKERNEL-5.10-2024-047 vom 2024-01-23",
"url": "https://alas.aws.amazon.com/AL2/ALASKERNEL-5.10-2024-047.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:0622-1 vom 2024-02-26",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018010.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:0666-1 vom 2024-02-28",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018066.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:0662-1 vom 2024-02-28",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018065.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:0655-1 vom 2024-02-28",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018060.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:0705-1 vom 2024-02-29",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018067.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:0698-1 vom 2024-02-29",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018070.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2024:0727-1 vom 2024-02-29",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2024-February/018072.html"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6700-1 vom 2024-03-19",
"url": "https://ubuntu.com/security/notices/USN-6700-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6701-1 vom 2024-03-19",
"url": "https://ubuntu.com/security/notices/USN-6701-1"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6701-2 vom 2024-03-20",
"url": "https://ubuntu.com/security/notices/USN-6701-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6700-2 vom 2024-03-21",
"url": "https://ubuntu.com/security/notices/USN-6700-2"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6701-3 vom 2024-03-26",
"url": "https://ubuntu.com/security/notices/USN-6701-3"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-6701-4 vom 2024-04-09",
"url": "https://ubuntu.com/security/notices/USN-6701-4"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2394 vom 2024-04-30",
"url": "https://access.redhat.com/errata/RHSA-2024:2394"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2024-198 vom 2024-05-08",
"url": "https://www.dell.com/support/kbdoc/000224827/dsa-2024-="
},
{
"category": "external",
"summary": "IBM Security Bulletin 7152469 vom 2024-05-15",
"url": "https://www.ibm.com/support/pages/node/7152469"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3138 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:3138"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2950 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2950"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7156774 vom 2024-06-07",
"url": "https://www.ibm.com/support/pages/node/7156774"
},
{
"category": "external",
"summary": "Debian Security Advisory DLA-3841 vom 2024-06-25",
"url": "https://lists.debian.org/debian-lts-announce/2024/06/msg00016.html"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2024-239 vom 2024-07-18",
"url": "https://www.dell.com/support/kbdoc/de-de/000227051/dsa-2024-239-security-update-dell-ecs-3-8-1-1-for-multiple-security-vulnerabilities"
},
{
"category": "external",
"summary": "IBM Security Bulletin 7233232 vom 2025-05-13",
"url": "https://www.ibm.com/support/pages/node/7233232"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03614-1 vom 2025-10-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022911.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03600-1 vom 2025-10-15",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/VHWHH7ZSMFJ6PQZ3CBDGGCWHNBCWD26Z/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03613-1 vom 2025-10-16",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022915.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03615-1 vom 2025-10-16",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/BVPLWRQN6MVKFQDJSEKN2JP6PMSGIO4Q/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03626-1 vom 2025-10-17",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/Z3DYHRRLY43MYRNEEU5SFR4ZRMSPITED/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03628-1 vom 2025-10-17",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/O6BEPQBC4GULLYP5G3VVU4ZS37B7I6EV/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:03634-1 vom 2025-10-17",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022925.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:3716-1 vom 2025-10-22",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/022962.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:3751-1 vom 2025-10-23",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/NMB6RXALFYMRMM4UK7R54RAQRCZJEBH4/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:3761-1 vom 2025-10-23",
"url": "https://lists.opensuse.org/archives/list/security-announce@lists.opensuse.org/thread/MLTPAKCOQABZPEY7O35CI42PHK5WNIUQ/"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20851-1 vom 2025-10-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023025.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20861-1 vom 2025-10-24",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023019.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20870-1 vom 2025-10-27",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023060.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:20898-1 vom 2025-10-30",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-October/023116.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4057-1 vom 2025-11-11",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023254.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4132-1 vom 2025-11-18",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023302.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2025:4141-1 vom 2025-11-19",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2025-November/023304.html"
},
{
"category": "external",
"summary": "Dell Security Advisory DSA-2026-030 vom 2026-01-30",
"url": "https://www.dell.com/support/kbdoc/de-de/000421570/dsa-2026-030-security-update-for-dell-networker-vproxy-multiple-third-party-component-vulnerabilities"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20316-1 vom 2026-02-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024178.html"
},
{
"category": "external",
"summary": "SUSE Security Update SUSE-SU-2026:20332-1 vom 2026-02-13",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2026-February/024163.html"
}
],
"source_lang": "en-US",
"title": "Linux Kernel: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-02-15T23:00:00.000+00:00",
"generator": {
"date": "2026-02-16T13:25:39.274+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2023-2864",
"initial_release_date": "2023-11-08T23:00:00.000+00:00",
"revision_history": [
{
"date": "2023-11-08T23:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2023-12-05T23:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2023-12-11T23:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2023-12-12T23:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2023-12-13T23:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von SUSE und Ubuntu aufgenommen"
},
{
"date": "2023-12-14T23:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2023-12-17T23:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-01-07T23:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-01-09T23:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-01-10T23:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-01-17T23:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-01-22T23:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-02-26T23:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-02-28T23:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-02-29T23:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2024-03-18T23:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-03-20T23:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-03-21T23:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-03-25T23:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-04-09T22:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2024-04-29T22:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-07T22:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2024-05-15T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-05-21T22:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-09T22:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2024-06-25T22:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von Debian aufgenommen"
},
{
"date": "2024-07-18T22:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2025-05-13T22:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von IBM aufgenommen"
},
{
"date": "2025-10-15T22:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-10-16T22:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-10-19T22:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-10-21T22:00:00.000+00:00",
"number": "32",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-10-23T22:00:00.000+00:00",
"number": "33",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-10-26T23:00:00.000+00:00",
"number": "34",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-10-27T23:00:00.000+00:00",
"number": "35",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-10-30T23:00:00.000+00:00",
"number": "36",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-11-11T23:00:00.000+00:00",
"number": "37",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-11-18T23:00:00.000+00:00",
"number": "38",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2025-11-19T23:00:00.000+00:00",
"number": "39",
"summary": "Neue Updates von SUSE aufgenommen"
},
{
"date": "2026-01-29T23:00:00.000+00:00",
"number": "40",
"summary": "Neue Updates von Dell aufgenommen"
},
{
"date": "2026-02-15T23:00:00.000+00:00",
"number": "41",
"summary": "Neue Updates von SUSE aufgenommen"
}
],
"status": "final",
"version": "41"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"category": "product_name",
"name": "Debian Linux",
"product": {
"name": "Debian Linux",
"product_id": "2951",
"product_identification_helper": {
"cpe": "cpe:/o:debian:debian_linux:-"
}
}
}
],
"category": "vendor",
"name": "Debian"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c3.8.1.1",
"product": {
"name": "Dell ECS \u003c3.8.1.1",
"product_id": "T036366"
}
},
{
"category": "product_version",
"name": "3.8.1.1",
"product": {
"name": "Dell ECS 3.8.1.1",
"product_id": "T036366-fixed",
"product_identification_helper": {
"cpe": "cpe:/h:dell:ecs:3.8.1.1"
}
}
}
],
"category": "product_name",
"name": "ECS"
},
{
"branches": [
{
"category": "product_version",
"name": "virtual",
"product": {
"name": "Dell NetWorker virtual",
"product_id": "T034583",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:virtual"
}
}
},
{
"category": "product_version_range",
"name": "vProxy \u003c19.14",
"product": {
"name": "Dell NetWorker vProxy \u003c19.14",
"product_id": "T050451"
}
},
{
"category": "product_version",
"name": "vProxy 19.14",
"product": {
"name": "Dell NetWorker vProxy 19.14",
"product_id": "T050451-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:dell:networker:vproxy__19.14"
}
}
}
],
"category": "product_name",
"name": "NetWorker"
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"category": "product_name",
"name": "EMC Avamar",
"product": {
"name": "EMC Avamar",
"product_id": "T014381",
"product_identification_helper": {
"cpe": "cpe:/a:emc:avamar:-"
}
}
}
],
"category": "vendor",
"name": "EMC"
},
{
"branches": [
{
"category": "product_name",
"name": "IBM QRadar SIEM",
"product": {
"name": "IBM QRadar SIEM",
"product_id": "T021415",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:qradar_siem:-"
}
}
},
{
"branches": [
{
"category": "product_version",
"name": "12",
"product": {
"name": "IBM Security Guardium 12.0",
"product_id": "T031092",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:security_guardium:12.0"
}
}
}
],
"category": "product_name",
"name": "Security Guardium"
},
{
"branches": [
{
"category": "product_version",
"name": "10.1",
"product": {
"name": "IBM Spectrum Protect Plus 10.1",
"product_id": "T043600",
"product_identification_helper": {
"cpe": "cpe:/a:ibm:spectrum_protect_plus:10.1"
}
}
}
],
"category": "product_name",
"name": "Spectrum Protect Plus"
}
],
"category": "vendor",
"name": "IBM"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c6.4.4",
"product": {
"name": "Open Source Linux Kernel \u003c6.4.4",
"product_id": "T031013"
}
},
{
"category": "product_version",
"name": "6.4.4",
"product": {
"name": "Open Source Linux Kernel 6.4.4",
"product_id": "T031013-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:linux:linux_kernel:6.4.4"
}
}
},
{
"category": "product_version_range",
"name": "\u003c6.5-rc7",
"product": {
"name": "Open Source Linux Kernel \u003c6.5-rc7",
"product_id": "T031014"
}
},
{
"category": "product_version",
"name": "6.5-rc7",
"product": {
"name": "Open Source Linux Kernel 6.5-rc7",
"product_id": "T031014-fixed",
"product_identification_helper": {
"cpe": "cpe:/o:linux:linux_kernel:6.5-rc7"
}
}
}
],
"category": "product_name",
"name": "Linux Kernel"
}
],
"category": "vendor",
"name": "Open Source"
},
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux",
"product": {
"name": "SUSE Linux",
"product_id": "T002207",
"product_identification_helper": {
"cpe": "cpe:/o:suse:suse_linux:-"
}
}
}
],
"category": "vendor",
"name": "SUSE"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2023-39197",
"product_status": {
"known_affected": [
"T031014",
"T031013",
"67646",
"T034583",
"T036366",
"T050451",
"T014381",
"T043600",
"2951",
"T002207",
"T000126",
"T021415",
"T031092",
"398363"
]
},
"release_date": "2023-11-08T23:00:00.000+00:00",
"title": "CVE-2023-39197"
},
{
"cve": "CVE-2023-39198",
"product_status": {
"known_affected": [
"T031014",
"T031013",
"67646",
"T034583",
"T036366",
"T050451",
"T014381",
"T043600",
"2951",
"T002207",
"T000126",
"T021415",
"T031092",
"398363"
]
},
"release_date": "2023-11-08T23:00:00.000+00:00",
"title": "CVE-2023-39198"
}
]
}
WID-SEC-W-2024-1226
Vulnerability from csaf_certbund - Published: 2024-05-22 22:00 - Updated: 2026-05-11 22:00Summary
Red Hat OpenShift: Mehrere Schwachstellen
Severity
Hoch
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Red Hat OpenShift ist eine "Platform as a Service" (PaaS) Lösung zur Bereitstellung von Applikationen in der Cloud.
Angriff: Ein Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um Dateien zu manipulieren, einen Denial-of-Service-Zustand zu verursachen, beliebigen Code auszuführen, vertrauliche Informationen offenzulegen, seine Privilegien zu erweitern oder um weitere nicht spezifizierte Angriffe auszuführen.
Betroffene Betriebssysteme: - Linux
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
Affected products
Known affected
27 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
Red Hat OpenShift GitOps 1.12
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:gitops_1.12
|
GitOps 1.12 | |
|
Red Hat OpenShift CodeReady Workspaces
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:codeready_workspaces
|
CodeReady Workspaces | |
|
Red Hat Enterprise Linux 9
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:9
|
9 | |
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
Red Hat OpenShift Container Platform <4.12.72
Red Hat / OpenShift
|
Container Platform <4.12.72 | ||
|
Red Hat OpenShift
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:-
|
— | |
|
Red Hat OpenShift Run Once Duration Override Operator 1
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:run_once_duration_override_operator_1
|
Run Once Duration Override Operator 1 | |
|
Red Hat OpenShift Migration Toolkit for Applications <7.0.3
Red Hat / OpenShift
|
Migration Toolkit for Applications <7.0.3 | ||
|
Red Hat OpenShift Network Observability 1.6
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:network_observability_1.6
|
Network Observability 1.6 | |
|
Red Hat OpenShift Secondary Scheduler Operator
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:::secondary_scheduler_operator
|
Secondary Scheduler Operator | |
|
Red Hat OpenShift Kube Descheduler Operator 5
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:kube_descheduler_operator_5
|
Kube Descheduler Operator 5 | |
|
Red Hat OpenShift Data Foundation <4.14.13
Red Hat / OpenShift
|
Data Foundation <4.14.13 | ||
|
Amazon Linux 2
Amazon
|
cpe:/o:amazon:linux_2:-
|
— | |
|
Red Hat OpenShift Serverless Logic <1.35.0
Red Hat / OpenShift
|
Serverless Logic <1.35.0 | ||
|
Atlassian Bitbucket <9.4.13 (LTS)
Atlassian / Bitbucket
|
<9.4.13 (LTS) | ||
|
Atlassian Bitbucket <8.19.25 (LTS)
Atlassian / Bitbucket
|
<8.19.25 (LTS) | ||
|
Atlassian Bitbucket <10.0.2
Atlassian / Bitbucket
|
<10.0.2 | ||
|
Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4
|
Advanced Cluster Security for Kubernetes 4 | |
|
Red Hat OpenShift Container Platform <4.16.8
Red Hat / OpenShift
|
Container Platform <4.16.8 | ||
|
Red Hat OpenShift for Windows Containers <10.15.3
Red Hat / OpenShift
|
for Windows Containers <10.15.3 | ||
|
Dell ECS 3.8.1.0-3.8.1.7
Dell / ECS
|
cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7
|
3.8.1.0-3.8.1.7 | |
|
Red Hat OpenShift Container Platform <4.14.38
Red Hat / OpenShift
|
Container Platform <4.14.38 | ||
|
Red Hat Enterprise Linux
Red Hat / Enterprise Linux
|
cpe:/o:redhat:enterprise_linux:-
|
— | |
|
RESF Rocky Linux
RESF
|
cpe:/o:resf:rocky_linux:-
|
— | |
|
Red Hat OpenShift Custom Metric Autoscaler 2
Red Hat / OpenShift
|
cpe:/a:redhat:openshift:custom_metric_autoscaler_2
|
Custom Metric Autoscaler 2 | |
|
Ubuntu Linux
Ubuntu
|
cpe:/o:canonical:ubuntu_linux:-
|
— | |
|
Red Hat OpenShift GitOps <1.15.2
Red Hat / OpenShift
|
GitOps <1.15.2 |
References
50 references
{
"document": {
"aggregate_severity": {
"text": "hoch"
},
"category": "csaf_base",
"csaf_version": "2.0",
"distribution": {
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "de-DE",
"notes": [
{
"category": "legal_disclaimer",
"text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
},
{
"category": "description",
"text": "Red Hat OpenShift ist eine \"Platform as a Service\" (PaaS) L\u00f6sung zur Bereitstellung von Applikationen in der Cloud.",
"title": "Produktbeschreibung"
},
{
"category": "summary",
"text": "Ein Angreifer kann mehrere Schwachstellen in Red Hat OpenShift ausnutzen, um Dateien zu manipulieren, einen Denial-of-Service-Zustand zu verursachen, beliebigen Code auszuf\u00fchren, vertrauliche Informationen offenzulegen, seine Privilegien zu erweitern oder um weitere nicht spezifizierte Angriffe auszuf\u00fchren.",
"title": "Angriff"
},
{
"category": "general",
"text": "- Linux",
"title": "Betroffene Betriebssysteme"
}
],
"publisher": {
"category": "other",
"contact_details": "csaf-provider@cert-bund.de",
"name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
"namespace": "https://www.bsi.bund.de"
},
"references": [
{
"category": "self",
"summary": "WID-SEC-W-2024-1226 - CSAF Version",
"url": "https://wid.cert-bund.de/.well-known/csaf/white/2024/wid-sec-w-2024-1226.json"
},
{
"category": "self",
"summary": "WID-SEC-2024-1226 - Portal Version",
"url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2024-1226"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0164 vom 2025-01-09",
"url": "https://access.redhat.com/errata/RHSA-2025:0164"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2874 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2874"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2929 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2929"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2930 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2930"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2932 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2932"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2933 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:2933"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2874 vom 2024-05-22",
"url": "https://access.redhat.com/errata/RHSA-2024:3316"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:2901 vom 2024-05-23",
"url": "https://access.redhat.com/errata/RHSA-2024:2901"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3473 vom 2024-05-29",
"url": "https://access.redhat.com/errata/RHSA-2024:3473"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3790 vom 2024-06-11",
"url": "https://access.redhat.com/errata/RHSA-2024:3790"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3715 vom 2024-06-12",
"url": "https://access.redhat.com/errata/RHSA-2024:3715"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3314 vom 2024-06-13",
"url": "https://access.redhat.com/errata/RHSA-2024:3314"
},
{
"category": "external",
"summary": "RedHat Security Advisory",
"url": "https://access.redhat.com/errata/RHSA-2024:3919"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:3830 vom 2024-06-14",
"url": "https://errata.build.resf.org/RLSA-2024:3830"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:3827 vom 2024-06-14",
"url": "https://errata.build.resf.org/RLSA-2024:3827"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3868 vom 2024-06-17",
"url": "https://access.redhat.com/errata/RHSA-2024:3868"
},
{
"category": "external",
"summary": "Rocky Linux Security Advisory RLSA-2024:3826 vom 2024-06-14",
"url": "https://errata.build.resf.org/RLSA-2024:3826"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3889 vom 2024-06-19",
"url": "https://access.redhat.com/errata/RHSA-2024:3889"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3989 vom 2024-06-20",
"url": "https://access.redhat.com/errata/RHSA-2024:3989"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4163 vom 2024-06-27",
"url": "https://access.redhat.com/errata/RHSA-2024:4163"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3637 vom 2024-07-01",
"url": "https://access.redhat.com/errata/RHSA-2024:3637"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:1616 vom 2024-07-01",
"url": "https://access.redhat.com/errata/RHSA-2024:1616"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:3617 vom 2024-07-01",
"url": "https://access.redhat.com/errata/RHSA-2024:3617"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4269 vom 2024-07-03",
"url": "https://access.redhat.com/errata/RHSA-2024:4269"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4553 vom 2024-07-16",
"url": "https://access.redhat.com/errata/RHSA-2024:4553"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4699 vom 2024-07-25",
"url": "https://access.redhat.com/errata/RHSA-2024:4699"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:4455 vom 2024-07-29",
"url": "https://access.redhat.com/errata/RHSA-2024:4455"
},
{
"category": "external",
"summary": "Amazon Linux Security Advisory ALASDOCKER-2024-041 vom 2024-08-13",
"url": "https://alas.aws.amazon.com/AL2/ALASDOCKER-2024-041.html"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5422 vom 2024-08-20",
"url": "https://access.redhat.com/errata/RHSA-2024:5422"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:5745 vom 2024-08-22",
"url": "https://access.redhat.com/errata/RHSA-2024:5745"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6667 vom 2024-09-13",
"url": "https://access.redhat.com/errata/RHSA-2024:6667"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:6755 vom 2024-09-18",
"url": "https://access.redhat.com/errata/RHSA-2024:6755"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7164 vom 2024-09-26",
"url": "https://access.redhat.com/errata/RHSA-2024:7164"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:7184 vom 2024-10-03",
"url": "https://access.redhat.com/errata/RHSA-2024:7184"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8318 vom 2024-10-23",
"url": "https://access.redhat.com/errata/RHSA-2024:8318"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8676 vom 2024-10-30",
"url": "https://access.redhat.com/errata/RHSA-2024:8676"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8677 vom 2024-10-30",
"url": "https://access.redhat.com/errata/RHSA-2024:8677"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8688 vom 2024-11-06",
"url": "https://access.redhat.com/errata/RHSA-2024:8688"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:8692 vom 2024-11-07",
"url": "https://access.redhat.com/errata/RHSA-2024:8692"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2024:9088 vom 2024-11-12",
"url": "https://access.redhat.com/errata/RHSA-2024:9088"
},
{
"category": "external",
"summary": "Ubuntu Security Notice USN-7121-2 vom 2024-11-20",
"url": "https://ubuntu.com/security/notices/USN-7121-2"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0323 vom 2025-01-15",
"url": "https://access.redhat.com/errata/RHSA-2025:0323"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0664 vom 2025-01-23",
"url": "https://access.redhat.com/errata/RHSA-2025:0664"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:0832 vom 2025-02-06",
"url": "https://access.redhat.com/errata/RHSA-2025:0832"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:2876 vom 2025-03-17",
"url": "https://access.redhat.com/errata/RHSA-2025:2876"
},
{
"category": "external",
"summary": "Red Hat Security Advisory RHSA-2025:7753 vom 2025-05-16",
"url": "https://access.redhat.com/errata/RHSA-2025:7753"
},
{
"category": "external",
"summary": "Atlassian Security Bulletin - November 18 2025",
"url": "https://confluence.atlassian.com/security/security-bulletin-november-18-2025-1671463469.html"
},
{
"category": "external",
"summary": "Dell Security Advisory",
"url": "https://www.dell.com/support/kbdoc/en-us/000462117/dsa-2026-047-security-update-for-dell-ecs-and-objectscale-multiple-vulnerabilities-1"
}
],
"source_lang": "en-US",
"title": "Red Hat OpenShift: Mehrere Schwachstellen",
"tracking": {
"current_release_date": "2026-05-11T22:00:00.000+00:00",
"generator": {
"date": "2026-05-12T08:12:07.399+00:00",
"engine": {
"name": "BSI-WID",
"version": "1.5.0"
}
},
"id": "WID-SEC-W-2024-1226",
"initial_release_date": "2024-05-22T22:00:00.000+00:00",
"revision_history": [
{
"date": "2024-05-22T22:00:00.000+00:00",
"number": "1",
"summary": "Initiale Fassung"
},
{
"date": "2024-05-23T22:00:00.000+00:00",
"number": "2",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-05-30T22:00:00.000+00:00",
"number": "3",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-10T22:00:00.000+00:00",
"number": "4",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-11T22:00:00.000+00:00",
"number": "5",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-13T22:00:00.000+00:00",
"number": "6",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-16T22:00:00.000+00:00",
"number": "7",
"summary": "Neue Updates von Rocky Enterprise Software Foundation und Red Hat aufgenommen"
},
{
"date": "2024-06-18T22:00:00.000+00:00",
"number": "8",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-19T22:00:00.000+00:00",
"number": "9",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-27T22:00:00.000+00:00",
"number": "10",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-06-30T22:00:00.000+00:00",
"number": "11",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-02T22:00:00.000+00:00",
"number": "12",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-15T22:00:00.000+00:00",
"number": "13",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-25T22:00:00.000+00:00",
"number": "14",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-07-29T22:00:00.000+00:00",
"number": "15",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-13T22:00:00.000+00:00",
"number": "16",
"summary": "Neue Updates von Amazon aufgenommen"
},
{
"date": "2024-08-20T22:00:00.000+00:00",
"number": "17",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-08-21T22:00:00.000+00:00",
"number": "18",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-12T22:00:00.000+00:00",
"number": "19",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-18T22:00:00.000+00:00",
"number": "20",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-09-25T22:00:00.000+00:00",
"number": "21",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-03T22:00:00.000+00:00",
"number": "22",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-23T22:00:00.000+00:00",
"number": "23",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-10-30T23:00:00.000+00:00",
"number": "24",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-06T23:00:00.000+00:00",
"number": "25",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-11T23:00:00.000+00:00",
"number": "26",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2024-11-20T23:00:00.000+00:00",
"number": "27",
"summary": "Neue Updates von Ubuntu aufgenommen"
},
{
"date": "2025-01-08T23:00:00.000+00:00",
"number": "28",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-14T23:00:00.000+00:00",
"number": "29",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-01-23T23:00:00.000+00:00",
"number": "30",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-02-05T23:00:00.000+00:00",
"number": "31",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-03-16T23:00:00.000+00:00",
"number": "32",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-05-15T22:00:00.000+00:00",
"number": "33",
"summary": "Neue Updates von Red Hat aufgenommen"
},
{
"date": "2025-11-18T23:00:00.000+00:00",
"number": "34",
"summary": "Neue Updates aufgenommen"
},
{
"date": "2026-05-11T22:00:00.000+00:00",
"number": "35",
"summary": "Neue Updates von Dell aufgenommen"
}
],
"status": "final",
"version": "35"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Amazon Linux 2",
"product": {
"name": "Amazon Linux 2",
"product_id": "398363",
"product_identification_helper": {
"cpe": "cpe:/o:amazon:linux_2:-"
}
}
}
],
"category": "vendor",
"name": "Amazon"
},
{
"branches": [
{
"branches": [
{
"category": "product_version_range",
"name": "\u003c10.0.2",
"product": {
"name": "Atlassian Bitbucket \u003c10.0.2",
"product_id": "T048675"
}
},
{
"category": "product_version",
"name": "10.0.2",
"product": {
"name": "Atlassian Bitbucket 10.0.2",
"product_id": "T048675-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bitbucket:10.0.2"
}
}
},
{
"category": "product_version_range",
"name": "\u003c8.19.25 (LTS)",
"product": {
"name": "Atlassian Bitbucket \u003c8.19.25 (LTS)",
"product_id": "T048676"
}
},
{
"category": "product_version",
"name": "8.19.25 (LTS)",
"product": {
"name": "Atlassian Bitbucket 8.19.25 (LTS)",
"product_id": "T048676-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bitbucket:8.19.25_%28lts%29"
}
}
},
{
"category": "product_version_range",
"name": "\u003c9.4.13 (LTS)",
"product": {
"name": "Atlassian Bitbucket \u003c9.4.13 (LTS)",
"product_id": "T048677"
}
},
{
"category": "product_version",
"name": "9.4.13 (LTS)",
"product": {
"name": "Atlassian Bitbucket 9.4.13 (LTS)",
"product_id": "T048677-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:atlassian:bitbucket:9.4.13_%28lts%29"
}
}
}
],
"category": "product_name",
"name": "Bitbucket"
}
],
"category": "vendor",
"name": "Atlassian"
},
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "3.8.1.0-3.8.1.7",
"product": {
"name": "Dell ECS 3.8.1.0-3.8.1.7",
"product_id": "T053778",
"product_identification_helper": {
"cpe": "cpe:/h:dell:ecs:3.8.1.0_-_3.8.1.7"
}
}
}
],
"category": "product_name",
"name": "ECS"
}
],
"category": "vendor",
"name": "Dell"
},
{
"branches": [
{
"category": "product_name",
"name": "RESF Rocky Linux",
"product": {
"name": "RESF Rocky Linux",
"product_id": "T032255",
"product_identification_helper": {
"cpe": "cpe:/o:resf:rocky_linux:-"
}
}
}
],
"category": "vendor",
"name": "RESF"
},
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "67646",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version",
"name": "Advanced Cluster Security for Kubernetes 4",
"product": {
"name": "Red Hat Enterprise Linux Advanced Cluster Security for Kubernetes 4",
"product_id": "T033787",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:advanced_cluster_security_for_kubernetes_4"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux",
"product": {
"name": "Red Hat Enterprise Linux",
"product_id": "T035142",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:-"
}
}
},
{
"category": "product_version",
"name": "9",
"product": {
"name": "Red Hat Enterprise Linux 9",
"product_id": "T038901",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:9"
}
}
}
],
"category": "product_name",
"name": "Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "Secondary Scheduler Operator",
"product": {
"name": "Red Hat OpenShift Secondary Scheduler Operator",
"product_id": "T027759",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:::secondary_scheduler_operator"
}
}
},
{
"category": "product_version",
"name": "Kube Descheduler Operator 5",
"product": {
"name": "Red Hat OpenShift Kube Descheduler Operator 5",
"product_id": "T033270",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:kube_descheduler_operator_5"
}
}
},
{
"category": "product_name",
"name": "Red Hat OpenShift",
"product": {
"name": "Red Hat OpenShift",
"product_id": "T035034",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:-"
}
}
},
{
"category": "product_version_range",
"name": "Migration Toolkit for Applications \u003c7.0.3",
"product": {
"name": "Red Hat OpenShift Migration Toolkit for Applications \u003c7.0.3",
"product_id": "T035036"
}
},
{
"category": "product_version",
"name": "Migration Toolkit for Applications 7.0.3",
"product": {
"name": "Red Hat OpenShift Migration Toolkit for Applications 7.0.3",
"product_id": "T035036-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:migration_toolkit_for_applications__7.0.3"
}
}
},
{
"category": "product_version",
"name": "Custom Metric Autoscaler 2",
"product": {
"name": "Red Hat OpenShift Custom Metric Autoscaler 2",
"product_id": "T035047",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:custom_metric_autoscaler_2"
}
}
},
{
"category": "product_version",
"name": "Network Observability 1.6",
"product": {
"name": "Red Hat OpenShift Network Observability 1.6",
"product_id": "T035431",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:network_observability_1.6"
}
}
},
{
"category": "product_version",
"name": "GitOps 1.12",
"product": {
"name": "Red Hat OpenShift GitOps 1.12",
"product_id": "T035679",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:gitops_1.12"
}
}
},
{
"category": "product_version",
"name": "Run Once Duration Override Operator 1",
"product": {
"name": "Red Hat OpenShift Run Once Duration Override Operator 1",
"product_id": "T035698",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:run_once_duration_override_operator_1"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.16.8",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.16.8",
"product_id": "T036959"
}
},
{
"category": "product_version",
"name": "Container Platform 4.16.8",
"product": {
"name": "Red Hat OpenShift Container Platform 4.16.8",
"product_id": "T036959-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.16.8"
}
}
},
{
"category": "product_version_range",
"name": "for Windows Containers \u003c10.15.3",
"product": {
"name": "Red Hat OpenShift for Windows Containers \u003c10.15.3",
"product_id": "T036993"
}
},
{
"category": "product_version",
"name": "for Windows Containers 10.15.3",
"product": {
"name": "Red Hat OpenShift for Windows Containers 10.15.3",
"product_id": "T036993-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:for_windows_containers__10.15.3"
}
}
},
{
"category": "product_version",
"name": "CodeReady Workspaces",
"product": {
"name": "Red Hat OpenShift CodeReady Workspaces",
"product_id": "T037618",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:codeready_workspaces"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.14.38",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.14.38",
"product_id": "T037940"
}
},
{
"category": "product_version",
"name": "Container Platform 4.14.38",
"product": {
"name": "Red Hat OpenShift Container Platform 4.14.38",
"product_id": "T037940-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.14.38"
}
}
},
{
"category": "product_version_range",
"name": "Data Foundation \u003c4.14.13",
"product": {
"name": "Red Hat OpenShift Data Foundation \u003c4.14.13",
"product_id": "T040215"
}
},
{
"category": "product_version",
"name": "Data Foundation 4.14.13",
"product": {
"name": "Red Hat OpenShift Data Foundation 4.14.13",
"product_id": "T040215-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:data_foundation__4.14.13"
}
}
},
{
"category": "product_version_range",
"name": "Serverless Logic \u003c1.35.0",
"product": {
"name": "Red Hat OpenShift Serverless Logic \u003c1.35.0",
"product_id": "T040597"
}
},
{
"category": "product_version",
"name": "Serverless Logic 1.35.0",
"product": {
"name": "Red Hat OpenShift Serverless Logic 1.35.0",
"product_id": "T040597-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:serverless_logic__1.35.0"
}
}
},
{
"category": "product_version_range",
"name": "Container Platform \u003c4.12.72",
"product": {
"name": "Red Hat OpenShift Container Platform \u003c4.12.72",
"product_id": "T040822"
}
},
{
"category": "product_version",
"name": "Container Platform 4.12.72",
"product": {
"name": "Red Hat OpenShift Container Platform 4.12.72",
"product_id": "T040822-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:container_platform__4.12.72"
}
}
},
{
"category": "product_version_range",
"name": "GitOps \u003c1.15.2",
"product": {
"name": "Red Hat OpenShift GitOps \u003c1.15.2",
"product_id": "T043834"
}
},
{
"category": "product_version",
"name": "GitOps 1.15.2",
"product": {
"name": "Red Hat OpenShift GitOps 1.15.2",
"product_id": "T043834-fixed",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:openshift:gitops__1.15.2"
}
}
}
],
"category": "product_name",
"name": "OpenShift"
}
],
"category": "vendor",
"name": "Red Hat"
},
{
"branches": [
{
"category": "product_name",
"name": "Ubuntu Linux",
"product": {
"name": "Ubuntu Linux",
"product_id": "T000126",
"product_identification_helper": {
"cpe": "cpe:/o:canonical:ubuntu_linux:-"
}
}
}
],
"category": "vendor",
"name": "Ubuntu"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2020-26555",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2020-26555"
},
{
"cve": "CVE-2021-25220",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2021-25220"
},
{
"cve": "CVE-2021-29390",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2021-29390"
},
{
"cve": "CVE-2021-43618",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2021-43618"
},
{
"cve": "CVE-2022-0480",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-0480"
},
{
"cve": "CVE-2022-2795",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-2795"
},
{
"cve": "CVE-2022-3094",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-3094"
},
{
"cve": "CVE-2022-38096",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-38096"
},
{
"cve": "CVE-2022-40090",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-40090"
},
{
"cve": "CVE-2022-45934",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-45934"
},
{
"cve": "CVE-2022-48554",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-48554"
},
{
"cve": "CVE-2022-48624",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2022-48624"
},
{
"cve": "CVE-2023-24023",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-24023"
},
{
"cve": "CVE-2023-25193",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-25193"
},
{
"cve": "CVE-2023-25775",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-25775"
},
{
"cve": "CVE-2023-26159",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-26159"
},
{
"cve": "CVE-2023-26364",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-26364"
},
{
"cve": "CVE-2023-28322",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-28322"
},
{
"cve": "CVE-2023-28464",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-28464"
},
{
"cve": "CVE-2023-28866",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-28866"
},
{
"cve": "CVE-2023-2975",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-2975"
},
{
"cve": "CVE-2023-31083",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-31083"
},
{
"cve": "CVE-2023-31122",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-31122"
},
{
"cve": "CVE-2023-3446",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-3446"
},
{
"cve": "CVE-2023-3567",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-3567"
},
{
"cve": "CVE-2023-3618",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-3618"
},
{
"cve": "CVE-2023-37453",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-37453"
},
{
"cve": "CVE-2023-3817",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-3817"
},
{
"cve": "CVE-2023-38469",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-38469"
},
{
"cve": "CVE-2023-38470",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-38470"
},
{
"cve": "CVE-2023-38471",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-38471"
},
{
"cve": "CVE-2023-38472",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-38472"
},
{
"cve": "CVE-2023-38473",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-38473"
},
{
"cve": "CVE-2023-38546",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-38546"
},
{
"cve": "CVE-2023-39189",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-39189"
},
{
"cve": "CVE-2023-39193",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-39193"
},
{
"cve": "CVE-2023-39194",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-39194"
},
{
"cve": "CVE-2023-39198",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-39198"
},
{
"cve": "CVE-2023-39326",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-39326"
},
{
"cve": "CVE-2023-40745",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-40745"
},
{
"cve": "CVE-2023-41175",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-41175"
},
{
"cve": "CVE-2023-4133",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-4133"
},
{
"cve": "CVE-2023-42754",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-42754"
},
{
"cve": "CVE-2023-42756",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-42756"
},
{
"cve": "CVE-2023-43785",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-43785"
},
{
"cve": "CVE-2023-43786",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-43786"
},
{
"cve": "CVE-2023-43787",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-43787"
},
{
"cve": "CVE-2023-43788",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-43788"
},
{
"cve": "CVE-2023-43789",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-43789"
},
{
"cve": "CVE-2023-4408",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-4408"
},
{
"cve": "CVE-2023-45286",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45286"
},
{
"cve": "CVE-2023-45287",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45287"
},
{
"cve": "CVE-2023-45288",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45288"
},
{
"cve": "CVE-2023-45289",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45289"
},
{
"cve": "CVE-2023-45290",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45290"
},
{
"cve": "CVE-2023-45857",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45857"
},
{
"cve": "CVE-2023-45863",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-45863"
},
{
"cve": "CVE-2023-46218",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-46218"
},
{
"cve": "CVE-2023-46862",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-46862"
},
{
"cve": "CVE-2023-47038",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-47038"
},
{
"cve": "CVE-2023-48631",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-48631"
},
{
"cve": "CVE-2023-50387",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-50387"
},
{
"cve": "CVE-2023-50868",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-50868"
},
{
"cve": "CVE-2023-51043",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-51043"
},
{
"cve": "CVE-2023-51779",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-51779"
},
{
"cve": "CVE-2023-51780",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-51780"
},
{
"cve": "CVE-2023-52425",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52425"
},
{
"cve": "CVE-2023-52434",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52434"
},
{
"cve": "CVE-2023-52448",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52448"
},
{
"cve": "CVE-2023-52476",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52476"
},
{
"cve": "CVE-2023-52489",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52489"
},
{
"cve": "CVE-2023-52522",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52522"
},
{
"cve": "CVE-2023-52529",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52529"
},
{
"cve": "CVE-2023-52574",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52574"
},
{
"cve": "CVE-2023-52578",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52578"
},
{
"cve": "CVE-2023-52580",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52580"
},
{
"cve": "CVE-2023-52581",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52581"
},
{
"cve": "CVE-2023-52597",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52597"
},
{
"cve": "CVE-2023-52610",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52610"
},
{
"cve": "CVE-2023-52620",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-52620"
},
{
"cve": "CVE-2023-5678",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-5678"
},
{
"cve": "CVE-2023-6040",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6040"
},
{
"cve": "CVE-2023-6121",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6121"
},
{
"cve": "CVE-2023-6129",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6129"
},
{
"cve": "CVE-2023-6176",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6176"
},
{
"cve": "CVE-2023-6228",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6228"
},
{
"cve": "CVE-2023-6237",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6237"
},
{
"cve": "CVE-2023-6240",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6240"
},
{
"cve": "CVE-2023-6531",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6531"
},
{
"cve": "CVE-2023-6546",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6546"
},
{
"cve": "CVE-2023-6622",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6622"
},
{
"cve": "CVE-2023-6915",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6915"
},
{
"cve": "CVE-2023-6931",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6931"
},
{
"cve": "CVE-2023-6932",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-6932"
},
{
"cve": "CVE-2023-7008",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2023-7008"
},
{
"cve": "CVE-2024-0565",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-0565"
},
{
"cve": "CVE-2024-0727",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-0727"
},
{
"cve": "CVE-2024-0841",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-0841"
},
{
"cve": "CVE-2024-1085",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-1085"
},
{
"cve": "CVE-2024-1086",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-1086"
},
{
"cve": "CVE-2024-1394",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-1394"
},
{
"cve": "CVE-2024-1488",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-1488"
},
{
"cve": "CVE-2024-21011",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-21011"
},
{
"cve": "CVE-2024-21012",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-21012"
},
{
"cve": "CVE-2024-21068",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-21068"
},
{
"cve": "CVE-2024-21085",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-21085"
},
{
"cve": "CVE-2024-21094",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-21094"
},
{
"cve": "CVE-2024-22365",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-22365"
},
{
"cve": "CVE-2024-24783",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-24783"
},
{
"cve": "CVE-2024-24784",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-24784"
},
{
"cve": "CVE-2024-24785",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-24785"
},
{
"cve": "CVE-2024-24786",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-24786"
},
{
"cve": "CVE-2024-25062",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-25062"
},
{
"cve": "CVE-2024-25742",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-25742"
},
{
"cve": "CVE-2024-25743",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-25743"
},
{
"cve": "CVE-2024-26582",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26582"
},
{
"cve": "CVE-2024-26583",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26583"
},
{
"cve": "CVE-2024-26584",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26584"
},
{
"cve": "CVE-2024-26585",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26585"
},
{
"cve": "CVE-2024-26586",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26586"
},
{
"cve": "CVE-2024-26593",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26593"
},
{
"cve": "CVE-2024-26602",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26602"
},
{
"cve": "CVE-2024-26609",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26609"
},
{
"cve": "CVE-2024-26633",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-26633"
},
{
"cve": "CVE-2024-27316",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-27316"
},
{
"cve": "CVE-2024-28834",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-28834"
},
{
"cve": "CVE-2024-28835",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-28835"
},
{
"cve": "CVE-2024-28849",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-28849"
},
{
"cve": "CVE-2024-29180",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-29180"
},
{
"cve": "CVE-2024-2961",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-2961"
},
{
"cve": "CVE-2024-33599",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-33599"
},
{
"cve": "CVE-2024-33600",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-33600"
},
{
"cve": "CVE-2024-33601",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-33601"
},
{
"cve": "CVE-2024-33602",
"product_status": {
"known_affected": [
"T035679",
"T037618",
"T038901",
"67646",
"T040822",
"T035034",
"T035698",
"T035036",
"T035431",
"T027759",
"T033270",
"T040215",
"398363",
"T040597",
"T048677",
"T048676",
"T048675",
"T033787",
"T036959",
"T036993",
"T053778",
"T037940",
"T035142",
"T032255",
"T035047",
"T000126",
"T043834"
]
},
"release_date": "2024-05-22T22:00:00.000+00:00",
"title": "CVE-2024-33602"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…